blinded4 (09-30-2015),mengleang (09-10-2015),niclaswarp123 (12-25-2015),Zarx (04-17-2015)
This will be on how to setup NJRat. As this is very simple, there are some people who do not know how to do it!
Enjoy
1. Find a untouched version of NJRat, find a source that you trust. Since none of you will trust me and I understand I will not attach a NJRat because I don't want to hear anyone bitching saying that I am trying to backdoor them when it is a false positive. (If you need one PM me and I can provide)
2. Get DUC, (Dynamic DNS Update Client) This is attached at the bottom of page, if you do not trust it go download it from elsewhere. This will be a setup, just like any other.
3. Go to the no-ip website, make an account or sign in. Then once signed in go to "Add a host" This will then ask you for a hostname, name it anything you would like. Make the domain no-ip.biz instead of ddns.net. Leave the rest of the settings alone and press "Add Host".
4. Run DUC and login and select your host that you created.
5. Now you will have to port forward. Go to your router login, type in username and pass then go to where ever your Port Forwarding settings are. Choose a port you would like to use and then set the type to TCP And UDP (Your options may just say "Both"). Set the external Starting port and External ending port to whatever number you would like in range. (For example default is 1604 so that is what I will use in the tutorial).
6. Save settings and you have now completed the port forwarding step.
7. Open NJRat, it will ask you what port you would like to listen to. Type in the port that you entered in the previous step. (For the tutorial "1604").
8. Once listening to the port, you need to check to see if it can listen. To do so go to canyouseeme and type your port (1604) in the box on the site then press "Check Port" If it says "Success" then you are all good, go to step 8 If it says "Error" you are having a problem with your forwarding.
-A few things you can do to fix it.
*Double check to see if you are checking the right port
*Make sure NJRat is running
*If you have a Anti-Virus make sure that your firewall is allowing the program NJRat. Sometimes it will block ports, EXAMPLE: If you have Norton it will turn on stealth ports and it may block the port from any activity. If so allow the program. Then check again, you should be good.
9. Now you are almost done all you have to do is build the stub and in some cases go a bit further. To build the stub go to NJRat and click "Builder" this will open up a menu where it says "Host" you will put your no-ip hostname here (Make sure DUC is running)
10. Set the "Victim Name" to whatever you want.
11. Set "EXEName" to whatever you want also.
12. Set the directory for the exe to be dropped when ran to whatever you want, not Temp though it is so easy to remove!
13. If you want to set a icon you can do so. Just get a .ico and set it!
14. You can turn on off keylogger and such, and run on startup. Whatever you want it to do.
15. Press build, then save it to somewhere and you are all good! Now all you have to do is send the EXE to people and have them run it, READ BELOW THOUGH, YOU NEED TO MAKE IT UNDETECTABLE TO AV's!
Tip: Get a spoofer, this is a tool that will make the .exe look like a .png or .jpeg or whatever you want to the victim will run it more likely.
NOTE: DO NOT EVEN BOTHER DOING THIS WITHOUT A CRYPTER THAT IS NOT DETECTED! THE PERSONS FIREWALL AND AV WILL DETECT IMMEDIATELY. (Crypters are cheap, however you will need to purchase a new one every so often because every crypter will be detected by AV's sooner or later!)
If you have any questions I can help, PM me!
Last edited by T[M]T; 04-15-2015 at 11:40 PM.
TMT
20 Posts [✔]
30 Posts [✔]
50 Posts [✔]
100 Posts [X]
15 Thanks [✔]
25 Thanks [✔]
40 Thanks [X]
70 Thanks [X]
100 Thanks [X]
Never take life to seriously, you will never make it out alive!
blinded4 (09-30-2015),mengleang (09-10-2015),niclaswarp123 (12-25-2015),Zarx (04-17-2015)
It left you something the Virus scans
As a side note, when checking whether the stub is detected make sure to use a scan that does not distribute the results. Using an ordinary scan will cause it to become detected much faster. Also, you have to keep updating the file on the host's computer every so often or else their AV will detect it and you will lose them.
IMPORTANT NOTE: Doing this without the person's knowledge and permission is highly illegal. You can get sent to prison, and the FBI has been known to monitor the spreading of RATs.
I highly recommend getting the person's full permission before testing on them.
Thanskf or the share man
No problem. Be safe.
- - - Updated - - -
Remember: I am not responsible for anything you guys do with this RAT, it is illegal to RAT someone without them knowing and having consent to do so.
I USE THIS RAT FOR LEGAL PURPOSES ONLY!
HOWEVER IT WORKS FINE FOR ILLEGAL PURPOSES TOO I AM GUESSING...
<3
TMT
20 Posts [✔]
30 Posts [✔]
50 Posts [✔]
100 Posts [X]
15 Thanks [✔]
25 Thanks [✔]
40 Thanks [X]
70 Thanks [X]
100 Thanks [X]
Never take life to seriously, you will never make it out alive!
I alrady PM you to give me the NJRat to me gimme
For anyone wanting the R.A.T client, you can get it here: https://hostr.co/m8v3A4GzWerB (It's from the official creator).
The world is a dangerous place to live; not because of the people who are evil, but because of the people who don't do anything about it.
hey bro? can you pleas help me via teamviwer?
i need a working reliable source <3