Pretty much the subject, thread about the malware here. https://hackforums.net/showthread.php?tid=5495620
Client Features
Tor Support (You can now host it as a hidden service! Nothing is downloaded and tor is injected into already running process.)
Botkiller
Keylogger
Anti Bot-Kill
Process persistence
Process protection
Browser password recovery
FTP password recovery
Gaming software key recovery
Email password recovery
Licence key recovery
Connection encrypted with RSA paired with AES-256 (Keys generated dynamically)
Cloud-based malware inspection
Social engineering tactics to acquire admin rights in 9 languages
Privilege retention after reboot
Prevention of going into stand-by mode
Automatic port forwarding
Change homepage
Socks 5 proxy
Anti-Debug
Melt file
Client Features Explained
Spoiler (Click to View)
Panel Features
Coded using latest security standards
Low resources usage
No depreciated php functions
Captcha on login page prevents any bruteforce attack attempts
Highly detailed information and statistics
Creating commands is password protected
Support multiple user accounts
Account management (Delete, Suspend)
Creating privileged accounts
Highly customizable settings
Support generation of 1024-bit RSA Public Certificate and Private Key
Commands
Download to Location
Download to Location and Execute
Download and Execute
Download and Execute with Command Line arguments
Download and Inject
Download and Inject to specific process
Download and Inject with Command Line arguments
Change Group
Update
Update with MD5 hash verification
Start Reverse Socks5 Proxy
Visit Website
Visit Website Hidden
Set Homepage
Submit Shell Command
Uninstall
Sys Requirements
PHP 5.4+ with PDO
Ioncube Loader 5.0+
SQL Database
CronTab
Price & Purchase
Price (Normal version) : 75$ (Bin and Panel Files)
Price (Tor version) : 125$ (Bin and Panel Files)
Rebuild/Updates : 15$
Payment Method : BTC
Autobuy
Please use tor browser to access the autobuy website. The autobuy website is hosted on tor network for your maximum security and privacy.
http://zyklonoacemp2bug.onion
The purchase procedure is very simple.
1. Register on the website and navigate to the orders page.
2. In the textboxes write the url where you want to host the panel (example: http://myurl.com/panel).
3. Send the exact amount of BTC to the address that you will receive upon submitting your order.
4. Wait for 2 network confirmations and proceed to build your files using online builder.
If you encounter any issue just submit the support ticket on site.
Notes
Do not contact me if you plan to pay with PP, PM or anything other than BTC.
For this bot to work correctly you must use crypter with self injection otherwise you will break some of it features such as update, uninstall etc. Don't ask me what crypter to use, you will be ignored.
The client is native (coded in C++) however some functions require .NET framework (any version)
If you want me to setup the panel for you, you will have pay 15$. Installing updates and server maintenance is not included. This is one time fee and I will just set everything up so that is working correctly, I will not maintain your server. If something goes wrong and your server becomes unaccessible or whatever you can ask your hosting provider for support.
ToS
1. All sales are final. There are no refunds under any circumstances.
2. I am not responsible for your actions and things you do with this software.
3. You are not permitted to share or leak this software. In case you do that your licence will be terminated and you will no longer receive the updates or support.
4. Prior purchase make sure that you have installed all required modules that are necessary for the software to operate correctly.
5. I reserve the right to change price/whatever at any time.
Change Log
Code:
v1.3.0.0
-Added native loader [The bot now works on all .NET framework versions, persistence works even if there is no .NET framework installed]
-Improved stability
-Auto logout after 10min of inactivity in the panel
-Keylogger added
-Reverse socks proxy added
-Added BTC wallet address changer [HF version has disabled this feature]
-Miner removed
-Fixed bug with UDP flood where port was always 80
-Added automatic updater to make easier to update your clients
-Added download files over tor
-Added update on the fly [Zyklon H.T.T.P will just download the file from specified link and replace the installed file.]
-Added option to create cron jobs in the installer
-World map can show only online or all clients.
-Added help page with some explanations [More will come in the future]
-Added a % next to a numbers in the statistics page
-Added options to check keylogger logs and recovered browser passwords when you click client IP
-Panel now sanitize all user input variables before displaying them to the end user
-Fixed bug where the submenu would collapse when the page was selected
-Optimized persistence module
-Added option to download tor from the server using tor2web and simillar proxy. [Tor version stub size reduced from 1.3mb to 280kb]
-Added few new database options
-Fixed the bug where you could put string as parameters in knock time, offlline time, dead time and botkiller cycle.
-Fixed the bug with cloud based malware inspection where api key were not set correctly.
-Limited cloud based malware inspection only to startup items [This is because VT allows only 4 requests per minute using one api]
-Fixed the issue with downloading logs on some systems.
-Changed the way the settings were passed to the client. The client receives the new settings as soon they are applied in the panel. No need to wait for restart.
-Various other code optimizations and small bugfixes
v1.2.0.0
-Added option to change socks proxy port in the panel
-Botkiller Optimized
-Improved stability
-Password recovery module updated
-Added a few new database options in the panel
-Various bugs fixes and minor code changes
-Tor module optimized, faster connection to the Tor network
-Added option to group clients
v1.1.0.0
-Added Tor support [Nothing is dropped or downloaded]
-Added Botkiller [It will detect injected processes]
-Client basecode optimized
-Added various new options in the panel
-Updated password recovery for newest Mozilla Firefox and various other software.
-CloudFlare support added
v1.0.1.0
-Improved persistence [The bot now injects watchdog threads into other processes that protect the main process, startup regkeys/files and main file]
-Improved crypter compatibility
-Fixed a bug where bot was not uninstalling correctly
-Socks5 proxy optimized for better performance
-Added multiple startup methods
v1.0.0.0
-Initial Release
FAQ
Spoiler (Click to View)
