Viewing 15 posts - 1 through 15 (of 64 total)
  • Author
    Posts
  • #132829
    Mr_Groot
    Participant

    Hi Im having issues create c2 with discord. I’m Using Kali As Base Software. I did all the things needed to install the script. But While Creating Payload Im Getting The Following Error.

    [+] discord > build
    [?] Are you sure you want to build the backdoor? (y/n)
    y
    [+] Building backdoor…
    003c:err:service:process_send_start_message service L”PlugPlay” failed to start
    0054:err:sync:RtlpWaitForCriticalSection section 00006FFFFFCBD4A0 “dlls/ntdll/loader.c: loader_section” wait timed out in thread 0054, blocked by 0060, retrying (60 sec)
    003c:err:service:process_send_command receiving command result timed out
    wine: failed to open “/home/codebreak/.wine/drive_c/users/root/AppData/Local/Programs/Python/Python38-32/Scripts/pyinstaller.exe”: c0000135

    [+] The Backdoor can be found inside the “dist” directory

    DO NOT UPLOAD THE BACKDOOR TO VIRUS TOTAL

    It Says Backdoor Can Be Found In “Dist” But There Is No “Dist” Directory Created. Please Help.

    • This topic was modified 9 months, 1 week ago by Mr_Groot.
    #132989
    Mr_Groot
    Participant

    Hello Moderators….

    Any updates on this?

    #133789
    Diego PérezDiego Pérez
    Moderator

    Hi!
    It seems there was an installation error, did you run it as root? I mean the installation script. Did you get any errors while doing it?
    You can try to run it again and try to create the backdoor after doing it.

    Greetings!
    Diego

    #133800
    Isika
    Participant

    I get the following error when i input ./setup.sh
    “ERROR: Could not find a version that satisfies the requirement subprocess (from versions: none)”
    “ERROR: No matching distribution found for subprocess”
    and when i try python builder.py or python3 builder.py it doesn’t open the builder.

    #133907
    Isika
    Participant

    ┌──(root㉿kali)-[/home/kali/dystopia-c2]
    └─# python3 builder.py
    Traceback (most recent call last):
    File “/home/kali/dystopia-c2/builder.py”, line 8, in <module>
    from prettytable import PrettyTable
    ModuleNotFoundError: No module named ‘prettytable’

    #133910
    Isika
    Participant

    i have fixed it, i installed pip manually

    #134059
    Diego PérezDiego Pérez
    Moderator

    Hi!
    Glad you got it!
    Diego

    #134151
    Mr_Groot
    Participant

    Hi

    Yes I Did Try As An Super User. But I Got Error While Installation As Well.

    #134727
    Diego PérezDiego Pérez
    Moderator

    Hi!
    But it’s working fine now, right?

    Greetings!
    Diego

    #134908
    Mr_Groot
    Participant

    No.

    It says [+] The Backdoor can be found inside the “dist” directory but there is no “dist” folder. I tried installing everything from start. But no luck. Im using pip version 24 & wine wine-9.0 but still getting following error.

    [+] Building backdoor…
    008c:err:ole:start_rpcss Failed to start RpcSs service
    0114:err:winediag:ntlm_check_version ntlm_auth was not found. Make sure that ntlm_auth >= 3.0.25 is in your path. Usually, you can find it in the winbind package of your distribution.
    0114:err:ntlm:ntlm_LsaApInitializePackage no NTLM support, expect problems
    9090 INFO: PyInstaller: 5.3
    9091 INFO: Python: 3.8.9
    9092 INFO: Platform: Windows-10-10.0.19043-SP0
    9099 INFO: wrote Z:\home\codebreak\Desktop\Github\c2\dystopia-c2\C2.spec
    9135 INFO: UPX is not available.
    9149 INFO: Extending PYTHONPATH with paths
    [‘Z:\\home\\codebreak\\Desktop\\Github\\c2\\dystopia-c2’]
    0134:err:winediag:ntlm_check_version ntlm_auth was not found. Make sure that ntlm_auth >= 3.0.25 is in your path. Usually, you can find it in the winbind package of your distribution.
    0134:err:ntlm:ntlm_LsaApInitializePackage no NTLM support, expect problems
    18877 INFO: checking Analysis
    18879 INFO: Building Analysis because Analysis-00.toc is non existent
    18880 INFO: Initializing module dependency graph…
    19070 INFO: Caching module graph hooks…
    19255 WARNING: Several hooks defined for module ‘numpy’. Please take care they d
    o not conflict.
    19428 INFO: Analyzing base_library.zip …
    0148:err:winediag:ntlm_check_version ntlm_auth was not found. Make sure that ntlm_auth >= 3.0.25 is in your path. Usually, you can find it in the winbind package of your distribution.
    0148:err:ntlm:ntlm_LsaApInitializePackage no NTLM support, expect problems
    0150:err:winediag:ntlm_check_version ntlm_auth was not found. Make sure that ntlm_auth >= 3.0.25 is in your path. Usually, you can find it in the winbind package of your distribution.
    0150:err:ntlm:ntlm_LsaApInitializePackage no NTLM support, expect problems
    0158:err:winediag:ntlm_check_version ntlm_auth was not found. Make sure that ntlm_auth >= 3.0.25 is in your path. Usually, you can find it in the winbind package of your distribution.
    0158:err:ntlm:ntlm_LsaApInitializePackage no NTLM support, expect problems
    43690 INFO: Processing pre-find module path hook distutils from ‘c:\\users\\root
    \\AppData\\Local\\Programs\\Python\\python38-32\\lib\\site-packages\\PyInstaller
    \\hooks\\pre_find_module_path\\hook-distutils.py’.
    43731 INFO: distutils: retargeting to non-venv dir ‘c:\\users\\root\\AppData\\Lo
    cal\\Programs\\Python\\python38-32\\lib’
    60508 INFO: Caching module dependency graph…
    61581 INFO: running Analysis Analysis-00.toc
    61708 INFO: Adding Microsoft.Windows.Common-Controls to dependent assemblies of
    final executable
    required by c:\users\root\AppData\Local\Programs\Python\python38-32\python.exe
    62128 INFO: Analyzing Z:\home\codebreak\Desktop\Github\c2\dystopia-c2\C2.py
    104546 INFO: Processing pre-find module path hook site from ‘c:\\users\\root\\Ap
    pData\\Local\\Programs\\Python\\python38-32\\lib\\site-packages\\PyInstaller\\ho
    oks\\pre_find_module_path\\hook-site.py’.
    104577 INFO: site: retargeting to fake-dir ‘c:\\users\\root\\AppData\\Local\\Pro
    grams\\Python\\python38-32\\lib\\site-packages\\PyInstaller\\fake-modules’
    126826 INFO: Processing pre-safe import module hook setuptools.extern.six.moves
    from ‘c:\\users\\root\\AppData\\Local\\Programs\\Python\\python38-32\\lib\\site-
    packages\\PyInstaller\\hooks\\pre_safe_import_module\\hook-setuptools.extern.six
    .moves.py’.
    0160:err:winediag:ntlm_check_version ntlm_auth was not found. Make sure that ntlm_auth >= 3.0.25 is in your path. Usually, you can find it in the winbind package of your distribution.
    0160:err:ntlm:ntlm_LsaApInitializePackage no NTLM support, expect problems
    181025 INFO: Processing module hooks…
    181026 INFO: Loading module hook ‘hook-certifi.py’ from ‘c:\\users\\root\\AppDat
    a\\Local\\Programs\\Python\\python38-32\\lib\\site-packages\\_pyinstaller_hooks_
    contrib\\hooks\\stdhooks’…
    181244 INFO: Loading module hook ‘hook-charset_normalizer.py’ from ‘c:\\users\\r
    oot\\AppData\\Local\\Programs\\Python\\python38-32\\lib\\site-packages\\_pyinsta
    ller_hooks_contrib\\hooks\\stdhooks’…
    181299 INFO: Loading module hook ‘hook-Crypto.py’ from ‘c:\\users\\root\\AppData
    \\Local\\Programs\\Python\\python38-32\\lib\\site-packages\\_pyinstaller_hooks_c
    ontrib\\hooks\\stdhooks’…
    198706 INFO: Loading module hook ‘hook-cryptography.py’ from ‘c:\\users\\root\\A
    ppData\\Local\\Programs\\Python\\python38-32\\lib\\site-packages\\_pyinstaller_h
    ooks_contrib\\hooks\\stdhooks’…
    01a0:err:winediag:ntlm_check_version ntlm_auth was not found. Make sure that ntlm_auth >= 3.0.25 is in your path. Usually, you can find it in the winbind package of your distribution.
    01a0:err:ntlm:ntlm_LsaApInitializePackage no NTLM support, expect problems
    c:\users\root\AppData\Local\Programs\Python\python38-32\lib\site-packages\crypto
    graphy\hazmat\backends\openssl\backend.py:17: UserWarning: You are using cryptog
    raphy on a 32-bit Python on a 64-bit Windows Operating System. Cryptography will
    be significantly faster if you switch to using a 64-bit Python.
    from cryptography.hazmat.bindings.openssl import binding
    01b0:err:winediag:ntlm_check_version ntlm_auth was not found. Make sure that ntlm_auth >= 3.0.25 is in your path. Usually, you can find it in the winbind package of your distribution.
    01b0:err:ntlm:ntlm_LsaApInitializePackage no NTLM support, expect problems
    222219 INFO: Loading module hook ‘hook-cv2.py’ from ‘c:\\users\\root\\AppData\\L
    ocal\\Programs\\Python\\python38-32\\lib\\site-packages\\_pyinstaller_hooks_cont
    rib\\hooks\\stdhooks’…
    01b8:err:winediag:ntlm_check_version ntlm_auth was not found. Make sure that ntlm_auth >= 3.0.25 is in your path. Usually, you can find it in the winbind package of your distribution.
    01b8:err:ntlm:ntlm_LsaApInitializePackage no NTLM support, expect problems
    236025 INFO: Import to be excluded not found: ‘cv2.load_config_py2’
    236028 INFO: Loading module hook ‘hook-nacl.py’ from ‘c:\\users\\root\\AppData\\
    Local\\Programs\\Python\\python38-32\\lib\\site-packages\\_pyinstaller_hooks_con
    trib\\hooks\\stdhooks’…
    237529 INFO: Loading module hook ‘hook-psutil.py’ from ‘c:\\users\\root\\AppData
    \\Local\\Programs\\Python\\python38-32\\lib\\site-packages\\_pyinstaller_hooks_c
    ontrib\\hooks\\stdhooks’…
    237693 INFO: Loading module hook ‘hook-pycparser.py’ from ‘c:\\users\\root\\AppD
    ata\\Local\\Programs\\Python\\python38-32\\lib\\site-packages\\_pyinstaller_hook
    s_contrib\\hooks\\stdhooks’…
    237719 INFO: Loading module hook ‘hook-sounddevice.py’ from ‘c:\\users\\root\\Ap
    pData\\Local\\Programs\\Python\\python38-32\\lib\\site-packages\\_pyinstaller_ho
    oks_contrib\\hooks\\stdhooks’…
    237967 INFO: Loading module hook ‘hook-numpy.py’ from ‘C:\\users\\root\\AppData\
    \Local\\Programs\\Python\\Python38-32\\Lib\\site-packages\\numpy\\_pyinstaller’.
    ..
    238882 INFO: Import to be excluded not found: ‘f2py’
    239031 INFO: Loading module hook ‘hook-difflib.py’ from ‘c:\\users\\root\\AppDat
    a\\Local\\Programs\\Python\\python38-32\\lib\\site-packages\\PyInstaller\\hooks’

    239140 INFO: Loading module hook ‘hook-distutils.py’ from ‘c:\\users\\root\\AppD
    ata\\Local\\Programs\\Python\\python38-32\\lib\\site-packages\\PyInstaller\\hook
    s’…
    239147 INFO: Loading module hook ‘hook-distutils.util.py’ from ‘c:\\users\\root\
    \AppData\\Local\\Programs\\Python\\python38-32\\lib\\site-packages\\PyInstaller\
    \hooks’…
    239177 INFO: Loading module hook ‘hook-encodings.py’ from ‘c:\\users\\root\\AppD
    ata\\Local\\Programs\\Python\\python38-32\\lib\\site-packages\\PyInstaller\\hook
    s’…
    01cc:err:winediag:ntlm_check_version ntlm_auth was not found. Make sure that ntlm_auth >= 3.0.25 is in your path. Usually, you can find it in the winbind package of your distribution.
    01cc:err:ntlm:ntlm_LsaApInitializePackage no NTLM support, expect problems
    261032 INFO: Loading module hook ‘hook-heapq.py’ from ‘c:\\users\\root\\AppData\
    \Local\\Programs\\Python\\python38-32\\lib\\site-packages\\PyInstaller\\hooks’..
    .
    261110 INFO: Loading module hook ‘hook-importlib_metadata.py’ from ‘c:\\users\\r
    oot\\AppData\\Local\\Programs\\Python\\python38-32\\lib\\site-packages\\PyInstal
    ler\\hooks’…
    261201 INFO: Loading module hook ‘hook-lib2to3.py’ from ‘c:\\users\\root\\AppDat
    a\\Local\\Programs\\Python\\python38-32\\lib\\site-packages\\PyInstaller\\hooks’

    262298 INFO: Loading module hook ‘hook-multiprocessing.util.py’ from ‘c:\\users\
    \root\\AppData\\Local\\Programs\\Python\\python38-32\\lib\\site-packages\\PyInst
    aller\\hooks’…
    262367 INFO: Loading module hook ‘hook-numpy._pytesttester.py’ from ‘c:\\users\\
    root\\AppData\\Local\\Programs\\Python\\python38-32\\lib\\site-packages\\PyInsta
    ller\\hooks’…
    262412 INFO: Loading module hook ‘hook-packaging.py’ from ‘c:\\users\\root\\AppD
    ata\\Local\\Programs\\Python\\python38-32\\lib\\site-packages\\PyInstaller\\hook
    s’…
    262421 INFO: Loading module hook ‘hook-pickle.py’ from ‘c:\\users\\root\\AppData
    \\Local\\Programs\\Python\\python38-32\\lib\\site-packages\\PyInstaller\\hooks’.
    ..
    262455 INFO: Loading module hook ‘hook-PIL.Image.py’ from ‘c:\\users\\root\\AppD
    ata\\Local\\Programs\\Python\\python38-32\\lib\\site-packages\\PyInstaller\\hook
    s’…
    01d4:err:winediag:ntlm_check_version ntlm_auth was not found. Make sure that ntlm_auth >= 3.0.25 is in your path. Usually, you can find it in the winbind package of your distribution.
    01d4:err:ntlm:ntlm_LsaApInitializePackage no NTLM support, expect problems
    267352 INFO: Loading module hook ‘hook-PIL.ImageFilter.py’ from ‘c:\\users\\root
    \\AppData\\Local\\Programs\\Python\\python38-32\\lib\\site-packages\\PyInstaller
    \\hooks’…
    267418 INFO: Loading module hook ‘hook-PIL.py’ from ‘c:\\users\\root\\AppData\\L
    ocal\\Programs\\Python\\python38-32\\lib\\site-packages\\PyInstaller\\hooks’…
    267522 INFO: Import to be excluded not found: ‘PySide2’
    267525 INFO: Loading module hook ‘hook-PIL.SpiderImagePlugin.py’ from ‘c:\\users
    \\root\\AppData\\Local\\Programs\\Python\\python38-32\\lib\\site-packages\\PyIns
    taller\\hooks’…
    267554 INFO: Loading module hook ‘hook-pkg_resources.py’ from ‘c:\\users\\root\\
    AppData\\Local\\Programs\\Python\\python38-32\\lib\\site-packages\\PyInstaller\\
    hooks’…
    01e4:err:winediag:ntlm_check_version ntlm_auth was not found. Make sure that ntlm_auth >= 3.0.25 is in your path. Usually, you can find it in the winbind package of your distribution.
    01e4:err:ntlm:ntlm_LsaApInitializePackage no NTLM support, expect problems
    01ec:err:winediag:ntlm_check_version ntlm_auth was not found. Make sure that ntlm_auth >= 3.0.25 is in your path. Usually, you can find it in the winbind package of your distribution.
    01ec:err:ntlm:ntlm_LsaApInitializePackage no NTLM support, expect problems
    01f4:err:winediag:ntlm_check_version ntlm_auth was not found. Make sure that ntlm_auth >= 3.0.25 is in your path. Usually, you can find it in the winbind package of your distribution.
    01f4:err:ntlm:ntlm_LsaApInitializePackage no NTLM support, expect problems
    279936 INFO: Processing pre-safe import module hook win32com from ‘c:\\users\\ro
    ot\\AppData\\Local\\Programs\\Python\\python38-32\\lib\\site-packages\\_pyinstal
    ler_hooks_contrib\\hooks\\pre_safe_import_module\\hook-win32com.py’.
    01fc:err:winediag:ntlm_check_version ntlm_auth was not found. Make sure that ntlm_auth >= 3.0.25 is in your path. Usually, you can find it in the winbind package of your distribution.
    01fc:err:ntlm:ntlm_LsaApInitializePackage no NTLM support, expect problems
    286347 INFO: Loading module hook ‘hook-platform.py’ from ‘c:\\users\\root\\AppDa
    ta\\Local\\Programs\\Python\\python38-32\\lib\\site-packages\\PyInstaller\\hooks
    ‘…
    286403 INFO: Loading module hook ‘hook-scipy.io.matlab.py’ from ‘c:\\users\\root
    \\AppData\\Local\\Programs\\Python\\python38-32\\lib\\site-packages\\PyInstaller
    \\hooks’…
    286421 INFO: Loading module hook ‘hook-scipy.linalg.py’ from ‘c:\\users\\root\\A
    ppData\\Local\\Programs\\Python\\python38-32\\lib\\site-packages\\PyInstaller\\h
    ooks’…
    286476 INFO: Loading module hook ‘hook-scipy.py’ from ‘c:\\users\\root\\AppData\
    \Local\\Programs\\Python\\python38-32\\lib\\site-packages\\PyInstaller\\hooks’..
    .
    287128 INFO: Loading module hook ‘hook-scipy.sparse.csgraph.py’ from ‘c:\\users\
    \root\\AppData\\Local\\Programs\\Python\\python38-32\\lib\\site-packages\\PyInst
    aller\\hooks’…
    287207 INFO: Loading module hook ‘hook-scipy.special._ellip_harm_2.py’ from ‘c:\
    \users\\root\\AppData\\Local\\Programs\\Python\\python38-32\\lib\\site-packages\
    \PyInstaller\\hooks’…
    308829 INFO: Loading module hook ‘hook-scipy.special._ufuncs.py’ from ‘c:\\users
    \\root\\AppData\\Local\\Programs\\Python\\python38-32\\lib\\site-packages\\PyIns
    taller\\hooks’…
    309529 INFO: Loading module hook ‘hook-scipy.stats._stats.py’ from ‘c:\\users\\r
    oot\\AppData\\Local\\Programs\\Python\\python38-32\\lib\\site-packages\\PyInstal
    ler\\hooks’…
    309675 INFO: Loading module hook ‘hook-setuptools.py’ from ‘c:\\users\\root\\App
    Data\\Local\\Programs\\Python\\python38-32\\lib\\site-packages\\PyInstaller\\hoo
    ks’…
    0208:err:winediag:ntlm_check_version ntlm_auth was not found. Make sure that ntlm_auth >= 3.0.25 is in your path. Usually, you can find it in the winbind package of your distribution.
    0208:err:ntlm:ntlm_LsaApInitializePackage no NTLM support, expect problems
    0210:err:winediag:ntlm_check_version ntlm_auth was not found. Make sure that ntlm_auth >= 3.0.25 is in your path. Usually, you can find it in the winbind package of your distribution.
    0210:err:ntlm:ntlm_LsaApInitializePackage no NTLM support, expect problems
    332231 INFO: Loading module hook ‘hook-sqlite3.py’ from ‘c:\\users\\root\\AppDat
    a\\Local\\Programs\\Python\\python38-32\\lib\\site-packages\\PyInstaller\\hooks’

    0218:err:winediag:ntlm_check_version ntlm_auth was not found. Make sure that ntlm_auth >= 3.0.25 is in your path. Usually, you can find it in the winbind package of your distribution.
    0218:err:ntlm:ntlm_LsaApInitializePackage no NTLM support, expect problems
    336299 INFO: Loading module hook ‘hook-sysconfig.py’ from ‘c:\\users\\root\\AppD
    ata\\Local\\Programs\\Python\\python38-32\\lib\\site-packages\\PyInstaller\\hook
    s’…
    336336 INFO: Loading module hook ‘hook-win32ctypes.core.py’ from ‘c:\\users\\roo
    t\\AppData\\Local\\Programs\\Python\\python38-32\\lib\\site-packages\\PyInstalle
    r\\hooks’…
    0230:err:winediag:ntlm_check_version ntlm_auth was not found. Make sure that ntlm_auth >= 3.0.25 is in your path. Usually, you can find it in the winbind package of your distribution.
    0230:err:ntlm:ntlm_LsaApInitializePackage no NTLM support, expect problems
    342856 INFO: Loading module hook ‘hook-xml.dom.domreg.py’ from ‘c:\\users\\root\
    \AppData\\Local\\Programs\\Python\\python38-32\\lib\\site-packages\\PyInstaller\
    \hooks’…
    342893 INFO: Loading module hook ‘hook-xml.etree.cElementTree.py’ from ‘c:\\user
    s\\root\\AppData\\Local\\Programs\\Python\\python38-32\\lib\\site-packages\\PyIn
    staller\\hooks’…
    342903 INFO: Loading module hook ‘hook-xml.py’ from ‘c:\\users\\root\\AppData\\L
    ocal\\Programs\\Python\\python38-32\\lib\\site-packages\\PyInstaller\\hooks’…
    342914 INFO: Loading module hook ‘hook-_tkinter.py’ from ‘c:\\users\\root\\AppDa
    ta\\Local\\Programs\\Python\\python38-32\\lib\\site-packages\\PyInstaller\\hooks
    ‘…
    347061 INFO: checking Tree
    347072 INFO: Building Tree because Tree-00.toc is non existent
    347073 INFO: Building Tree Tree-00.toc
    349501 INFO: checking Tree
    349503 INFO: Building Tree because Tree-01.toc is non existent
    349503 INFO: Building Tree Tree-01.toc
    350962 INFO: checking Tree
    350965 INFO: Building Tree because Tree-02.toc is non existent
    350966 INFO: Building Tree Tree-02.toc
    351130 INFO: Loading module hook ‘hook-pythoncom.py’ from ‘c:\\users\\root\\AppD
    ata\\Local\\Programs\\Python\\python38-32\\lib\\site-packages\\_pyinstaller_hook
    s_contrib\\hooks\\stdhooks’…
    025c:err:winediag:ntlm_check_version ntlm_auth was not found. Make sure that ntlm_auth >= 3.0.25 is in your path. Usually, you can find it in the winbind package of your distribution.
    025c:err:ntlm:ntlm_LsaApInitializePackage no NTLM support, expect problems
    354546 INFO: Loading module hook ‘hook-pywintypes.py’ from ‘c:\\users\\root\\App
    Data\\Local\\Programs\\Python\\python38-32\\lib\\site-packages\\_pyinstaller_hoo
    ks_contrib\\hooks\\stdhooks’…
    0268:err:winediag:ntlm_check_version ntlm_auth was not found. Make sure that ntlm_auth >= 3.0.25 is in your path. Usually, you can find it in the winbind package of your distribution.
    0268:err:ntlm:ntlm_LsaApInitializePackage no NTLM support, expect problems
    358340 INFO: Loading module hook ‘hook-win32com.py’ from ‘c:\\users\\root\\AppDa
    ta\\Local\\Programs\\Python\\python38-32\\lib\\site-packages\\_pyinstaller_hooks
    _contrib\\hooks\\stdhooks’…
    361269 INFO: Loading module hook ‘hook-scipy.spatial.transform.rotation.py’ from
    ‘c:\\users\\root\\AppData\\Local\\Programs\\Python\\python38-32\\lib\\site-pack
    ages\\PyInstaller\\hooks’…
    361947 INFO: Loading module hook ‘hook-setuptools.msvc.py’ from ‘c:\\users\\root
    \\AppData\\Local\\Programs\\Python\\python38-32\\lib\\site-packages\\PyInstaller
    \\hooks’…
    362437 INFO: Looking for ctypes DLLs
    363619 INFO: Analyzing run-time hooks …
    363700 INFO: Including run-time hook ‘c:\\users\\root\\AppData\\Local\\Programs\
    \Python\\python38-32\\lib\\site-packages\\PyInstaller\\hooks\\rthooks\\pyi_rth_p
    kgutil.py’
    363757 INFO: Including run-time hook ‘c:\\users\\root\\AppData\\Local\\Programs\
    \Python\\python38-32\\lib\\site-packages\\PyInstaller\\hooks\\rthooks\\pyi_rth_i
    nspect.py’
    363768 INFO: Including run-time hook ‘c:\\users\\root\\AppData\\Local\\Programs\
    \Python\\python38-32\\lib\\site-packages\\PyInstaller\\hooks\\rthooks\\pyi_rth_p
    kgres.py’
    363793 INFO: Including run-time hook ‘c:\\users\\root\\AppData\\Local\\Programs\
    \Python\\python38-32\\lib\\site-packages\\PyInstaller\\hooks\\rthooks\\pyi_rth_w
    in32comgenpy.py’
    363805 INFO: Including run-time hook ‘c:\\users\\root\\AppData\\Local\\Programs\
    \Python\\python38-32\\lib\\site-packages\\_pyinstaller_hooks_contrib\\hooks\\rth
    ooks\\pyi_rth_pywintypes.py’
    363836 INFO: Including run-time hook ‘c:\\users\\root\\AppData\\Local\\Programs\
    \Python\\python38-32\\lib\\site-packages\\_pyinstaller_hooks_contrib\\hooks\\rth
    ooks\\pyi_rth_pythoncom.py’
    363846 INFO: Including run-time hook ‘c:\\users\\root\\AppData\\Local\\Programs\
    \Python\\python38-32\\lib\\site-packages\\PyInstaller\\hooks\\rthooks\\pyi_rth_w
    in32api.py’
    363853 INFO: Including run-time hook ‘c:\\users\\root\\AppData\\Local\\Programs\
    \Python\\python38-32\\lib\\site-packages\\PyInstaller\\hooks\\rthooks\\pyi_rth_m
    ultiprocessing.py’
    363869 INFO: Including run-time hook ‘c:\\users\\root\\AppData\\Local\\Programs\
    \Python\\python38-32\\lib\\site-packages\\PyInstaller\\hooks\\rthooks\\pyi_rth__
    tkinter.py’
    363877 INFO: Including run-time hook ‘c:\\users\\root\\AppData\\Local\\Programs\
    \Python\\python38-32\\lib\\site-packages\\PyInstaller\\hooks\\rthooks\\pyi_rth_s
    ubprocess.py’
    364011 INFO: Looking for dynamic libraries
    0274:err:winediag:ntlm_check_version ntlm_auth was not found. Make sure that ntlm_auth >= 3.0.25 is in your path. Usually, you can find it in the winbind package of your distribution.
    0274:err:ntlm:ntlm_LsaApInitializePackage no NTLM support, expect problems
    c:\users\root\AppData\Local\Programs\Python\python38-32\lib\site-packages\setupt
    ools\distutils_patch.py:25: UserWarning: Distutils was imported before Setuptool
    s. This usage is discouraged and may exhibit undesirable behaviors or errors. Pl
    ease use Setuptools’ objects directly or at least import Setuptools first.
    warnings.warn(
    c:\users\root\AppData\Local\Programs\Python\python38-32\lib\site-packages\PyInst
    aller\building\build_main.py:157: UserWarning: The numpy.array_api submodule is
    still experimental. See NEP 47.
    __import__(package)
    c:\users\root\AppData\Local\Programs\Python\python38-32\lib\site-packages\crypto
    graphy\hazmat\backends\openssl\backend.py:17: UserWarning: You are using cryptog
    raphy on a 32-bit Python on a 64-bit Windows Operating System. Cryptography will
    be significantly faster if you switch to using a 64-bit Python.
    from cryptography.hazmat.bindings.openssl import binding
    423277 INFO: Looking for eggs
    423278 INFO: Using Python library c:\users\root\AppData\Local\Programs\Python\py
    thon38-32\python38.dll
    423279 INFO: Found binding redirects:
    []
    423524 INFO: Warnings written to Z:\home\codebreak\Desktop\Github\c2\dystopia-c2
    \build\C2\warn-C2.txt
    424527 INFO: Graph cross-reference written to Z:\home\codebreak\Desktop\Github\c
    2\dystopia-c2\build\C2\xref-C2.html
    425124 INFO: checking PYZ
    425125 INFO: Building PYZ because PYZ-00.toc is non existent
    425126 INFO: Building PYZ (ZlibArchive) Z:\home\codebreak\Desktop\Github\c2\dyst
    opia-c2\build\C2\PYZ-00.pyz
    433764 INFO: Building PYZ (ZlibArchive) Z:\home\codebreak\Desktop\Github\c2\dyst
    opia-c2\build\C2\PYZ-00.pyz completed successfully.
    434038 INFO: checking PKG
    434039 INFO: Building PKG because PKG-00.toc is non existent
    434041 INFO: Building PKG (CArchive) C2.pkg
    534081 INFO: Building PKG (CArchive) C2.pkg completed successfully.
    534459 INFO: Bootloader c:\users\root\AppData\Local\Programs\Python\python38-32\
    lib\site-packages\PyInstaller\bootloader\Windows-32bit\runw.exe
    534461 INFO: checking EXE
    534462 INFO: Building EXE because EXE-00.toc is non existent
    534463 INFO: Building EXE from EXE-00.toc
    534515 INFO: Copying bootloader EXE to Z:\home\codebreak\Desktop\Github\c2\dysto
    pia-c2\dist\C2.exe.notanexecutable
    534643 INFO: Copying icon to EXE
    534693 INFO: Copying icons from [‘Z:\\home\\codebreak\\Desktop\\Github\\c2\\dyst
    opia-c2\\img\\exe_file.ico’]
    534700 INFO: Writing RT_GROUP_ICON 0 resource with 118 bytes
    534701 INFO: Writing RT_ICON 1 resource with 2267 bytes
    534702 INFO: Writing RT_ICON 2 resource with 16936 bytes
    534703 INFO: Writing RT_ICON 3 resource with 9640 bytes
    534704 INFO: Writing RT_ICON 4 resource with 6760 bytes
    534705 INFO: Writing RT_ICON 5 resource with 4264 bytes
    534706 INFO: Writing RT_ICON 6 resource with 2440 bytes
    534707 INFO: Writing RT_ICON 7 resource with 1720 bytes
    534708 INFO: Writing RT_ICON 8 resource with 1128 bytes
    534720 INFO: Copying 0 resources to EXE
    534721 INFO: Embedding manifest in EXE
    534726 INFO: Updating manifest in Z:\home\codebreak\Desktop\Github\c2\dystopia-c
    2\dist\C2.exe.notanexecutable
    534731 INFO: Updating resource type 24 name 1 language 0
    534743 INFO: Appending PKG archive to EXE
    535253 INFO: Fixing EXE headers
    539220 INFO: Building EXE from EXE-00.toc completed successfully.

    [+] The Backdoor can be found inside the “dist” directory

    DO NOT UPLOAD THE BACKDOOR TO VIRUS TOTAL

    #135271
    Diego PérezDiego Pérez
    Moderator

    Hi!
    According to the output the binary was built successfully, there’s no fatal error. What user did you use to run the script? In which directory were you?

    Greetings!
    Diego

    #136075
    Mr_Groot
    Participant

    Hi

    I installed it using root. I was in the directory in which the script is stored that is on desktop.

    #136203
    Diego PérezDiego Pérez
    Moderator

    Hi!
    Yes, I know you used root to install but which user did you use to create the backdoor? Is it in kali or root desktop?

    Greetings!
    Diego

    #136393
    Mr_Groot
    Participant

    In Kali

    #136469
    Diego PérezDiego Pérez
    Moderator

    Hi!
    Then try to create the backdoor as root user instead.

    Greetings!
    Diego

Viewing 15 posts - 1 through 15 (of 64 total)
  • You must be logged in to reply to this topic.