README.md

What is this for

Spams a shitty phishing site that is stealing credentials and credit cards

package.json

{
  "name": "fake-spotify-spammer",
  "version": "1.0.0",
  "main": "index.js",
  "license": "MIT",
  "dependencies": {
    "creditcard-generator": "^0.0.7",
    "left-pad": "^1.3.0",
    "lodash": "^4.17.11",
    "node-fetch": "^2.2.0",
    "shortid": "^2.2.13",
    "urlencode": "^1.1.0"
  },
  "devDependencies": {
    "@types/node-fetch": "^2.1.2"
  }
}

spammer.js

const fetch = require("node-fetch");
const shortId = require("shortid");
const urlencode = require("urlencode");
const ccgen = require("creditcard-generator");
const _ = require("lodash");
const leftpad = require("left-pad"); // leftpad haha yes
const randomCities = [
  {
    postalCode: {
      min: 10001,
      max: 11104
    },
    city: "New York City",
    timezone: "America/New_York",
    country: "United States"
  },
  {
    postalCode: {
      min: 49036,
      max: 49036
    },
    city: "Coldwater",
    timezone: "America/Detroit",
    country: "United States"
  },
  {
    postalCode: {
      min: 49734,
      max: 49735
    },
    city: "Gaylord",
    timezone: "America/Detroit",
    country: "United States"
  },
  {
    postalCode: {
      min: 80201,
      max: 80239
    },
    city: "Denver",
    timezone: "America/New_York",
    country: "United States"
  },
  {
    postalCode: {
      min: 20001,
      max: 20020
    },
    city: "District of Columbia",
    timezone: "America/New_York",
    country: "United States"
  },
  {
    postalCode: {
      min: 44101,
      max: 44179
    },
    city: "Cleveland",
    timezone: "America/New_York",
    country: "United States"
  }
];
const ccTypes = ["VISA", "Mastercard"];
const cardUrls = [
  "http://spotifya.com/crediterror.php",
  "http://spotifya.com/kayit.php"
];
function randomNum(min, max) {
  return Math.floor(Math.random() * (max - min + 1) + min);
}
function requestLogin() {
  let body = {
    yaz: 1,
    logmail: `${shortId.generate()}@${shortId.generate()}.com`,
    logsifre: `${shortId.generate()}${shortId.generate()}${shortId.generate()}`,
    login: ""
  };
  fetch("http://spotifya.com/credits.php", {
    method: "POST",
    body: urlencode.stringify(body)
  })
    .then(res => {
      console.log("Requested login");
    })
    .catch(err => {
      console.error("Failed to request");
    });
}

function requestCard() {
  let url = _.sample(cardUrls);
  let city = _.sample(randomCities);
  let body = {
    type: "login_type",
    mail: `${shortId.generate()}@${shortId.generate()}.com`,
    sifre: `${shortId.generate()}${shortId.generate()}${shortId.generate()}`,
    gun: "",
    ay: "",
    yil: "",
    cinsiyet: "",
    timezone: city.timezone,
    sehir: city.city,
    ulke: city.country,
    postakodu: leftpad(
      randomNum(city.postalCode.min, city.postalCode.max),
      5,
      0
    ),
    ip: `${randomNum(1, 254)}.${randomNum(1, 254)}.${randomNum(
      1,
      254
    )}.${randomNum(1, 254)}`,
    ccnum: ccgen.GenCC(_.sample(ccTypes))[0],
    sktmonth: leftpad(randomNum(1, 12), 2, 0),
    sktyear: randomNum(2019, 2024),
    cvv: leftpad(randomNum(1, 999), 3, 0),
    con: "continue"
  };
  fetch(url, {
    method: "POST",
    body: urlencode.stringify(body)
  })
    .then(res => {
      console.log("Requested card");
    })
    .catch(err => {
      console.error("Failed to request");
    });
}
setInterval(() => {
  requestLogin();
  requestCard();
}, 500);