02-24-2026, 11:01 AM
Hello everybody.
I'm looking to purchase a custom-coded Remote Administration Tool that can run on any Linux machine and Infects windows PC's. I need it to have the following features:
- Connection: Reconnect, Disconnect, Uninstall
- Update Stub: From URL, From Local
- Client Status: Get System Info, Refresh Client
- Remote Desktop (Options: Quality, FPS, Select Monitor, Mouse/Keyboard Control (On/Off)
- Hidden Desktop (HVNC): Creates a seperate, invisible Windows session.
- Webcam: Start/Stop Streaming, Take Photo.
- Microphone: Listen Live, Record to File.
- Keylogger: Online Keylogger (Live), Offline Keylogger (Downloads logs stored on disk).
- Interactive Chat: Open Chat Window (Between attacker and victim)
- Power (Shutdown, Restart, Logoff, BSOD)
- Task / Process Manager: End Task, Suspend, Resume, Set Priority
- Startup Manager: View and delete programs that run on boot.
- Registry Editor: Browse, edit, or delete registry keys.
- Installed Programs: List all software; right-click to Uninstall.
- File Manager - Navigation: Drives, Common Folders (Desktop, Downloads, etc.)
- Operations: Download, Upload, Rename, Delete, Hidden Execute, Normal Execute.
- Encryption: Encrypt File (X-Lock), Decrypt File.
- Search: Find Files by Extension (e.g., searching specifically for .docx or .pdf)
- Stealer & Recovery: Browser Stealer for almost all modern browsers, including newer ones like Perplexity Comet. (Passwords, Cookies, Autofill, Credit Cards, History)
- Session Stealer: Discord Token, Telegram Session, Steam session, Epic Games session, Minecraft session, Uplay session, etc.
- Crypto Wallets: Support for almost all crypto extensions as well as all major desktop wallets (Exodus, Atomic, etc.)
- System Recovery: Wi-fi Passwords, Windows Product Key, FileZilla/FTP credentials.
- Clipper (Clipboard): Start/Stop (Replaces crypto addresses in real-time) supports BTC, LTC, XMR, DOGE, USDT, ETC, ETH, and more.
- DDoS: UDP Flood, HTTP Flood, TCP Flood.
- Ransomware: Configure and start - Sets crypto address, crypto token, email, price, ransomnote, ransom wallpaper and encryption extension all customizable.
- USB Spreader: Enable/Disable (Infects any thumb drive plugged into the PC.)
- Website Attack: Open URL (Visible), OpenURL (Hidden)
- Message Box: Send a custom pop-up message (Options: Error, Warning, Information, Question).
- Audio Playback: Play a sound file or use Text-to-speech (TTS).
- Scripting: Execute PowerShell, Execute Batch, Execute VBS.
- Proxy/Socks: Set up the victim as a proxy server.
- Remote Shell: Opens a hidden cmd.exe instance.
- SpeakTo: Speak directly to the victims computer speakers with a microphone, includes a voice changer to hide your voice.
- Silent Crypto Miner: Start / Stop mining XMR to a pool and address silently.
- Startup / Persistence: The payload runs on machine boot.
- Watchdog: If the payload is closed from the task manager it will relaunch automatically.
- Anti-VM: Prevents the payload from being run in a VM.
- Anti-debug: Prevents the payload from being debugged and looked at.
- {Unique Feature} Content Detection: Can detect if a user is visiting a porn site like pornhub, xvideos, etc. and automatically begin recording the screen, microphone, and webcam and stitches the three together to make a reaction-like video. Useful for blackmail.
- {Unique Feature} OBS Studio Stealer: Grabs stream keys, profiles, scenes, sources, and settings from OBS Studio, Streamlabs OBS, and Streamelements OBS.
All of this should be usable by the attacker running a Linux machine and having port-forwarding setup. The payload should be able to be built from the Linux machine. I'd prefer if the RAT had a GUI, or a Web-UI, but it isn't necessary so long as everything is functional. If it does have a Web-UI I'd prefer if the Web-UI is run on Tor hosting and the payload installs tor silently to the machine so it can route to our secret .onion address.
Willing to pay upwards of $1k USD for this to be done, only accept PayPal Friend and Family, and it would go through a middle-man.
If you are interested in doing this for me, message me on telegram: @neoreturns
I'm looking to purchase a custom-coded Remote Administration Tool that can run on any Linux machine and Infects windows PC's. I need it to have the following features:
- Connection: Reconnect, Disconnect, Uninstall
- Update Stub: From URL, From Local
- Client Status: Get System Info, Refresh Client
- Remote Desktop (Options: Quality, FPS, Select Monitor, Mouse/Keyboard Control (On/Off)
- Hidden Desktop (HVNC): Creates a seperate, invisible Windows session.
- Webcam: Start/Stop Streaming, Take Photo.
- Microphone: Listen Live, Record to File.
- Keylogger: Online Keylogger (Live), Offline Keylogger (Downloads logs stored on disk).
- Interactive Chat: Open Chat Window (Between attacker and victim)
- Power (Shutdown, Restart, Logoff, BSOD)
- Task / Process Manager: End Task, Suspend, Resume, Set Priority
- Startup Manager: View and delete programs that run on boot.
- Registry Editor: Browse, edit, or delete registry keys.
- Installed Programs: List all software; right-click to Uninstall.
- File Manager - Navigation: Drives, Common Folders (Desktop, Downloads, etc.)
- Operations: Download, Upload, Rename, Delete, Hidden Execute, Normal Execute.
- Encryption: Encrypt File (X-Lock), Decrypt File.
- Search: Find Files by Extension (e.g., searching specifically for .docx or .pdf)
- Stealer & Recovery: Browser Stealer for almost all modern browsers, including newer ones like Perplexity Comet. (Passwords, Cookies, Autofill, Credit Cards, History)
- Session Stealer: Discord Token, Telegram Session, Steam session, Epic Games session, Minecraft session, Uplay session, etc.
- Crypto Wallets: Support for almost all crypto extensions as well as all major desktop wallets (Exodus, Atomic, etc.)
- System Recovery: Wi-fi Passwords, Windows Product Key, FileZilla/FTP credentials.
- Clipper (Clipboard): Start/Stop (Replaces crypto addresses in real-time) supports BTC, LTC, XMR, DOGE, USDT, ETC, ETH, and more.
- DDoS: UDP Flood, HTTP Flood, TCP Flood.
- Ransomware: Configure and start - Sets crypto address, crypto token, email, price, ransomnote, ransom wallpaper and encryption extension all customizable.
- USB Spreader: Enable/Disable (Infects any thumb drive plugged into the PC.)
- Website Attack: Open URL (Visible), OpenURL (Hidden)
- Message Box: Send a custom pop-up message (Options: Error, Warning, Information, Question).
- Audio Playback: Play a sound file or use Text-to-speech (TTS).
- Scripting: Execute PowerShell, Execute Batch, Execute VBS.
- Proxy/Socks: Set up the victim as a proxy server.
- Remote Shell: Opens a hidden cmd.exe instance.
- SpeakTo: Speak directly to the victims computer speakers with a microphone, includes a voice changer to hide your voice.
- Silent Crypto Miner: Start / Stop mining XMR to a pool and address silently.
- Startup / Persistence: The payload runs on machine boot.
- Watchdog: If the payload is closed from the task manager it will relaunch automatically.
- Anti-VM: Prevents the payload from being run in a VM.
- Anti-debug: Prevents the payload from being debugged and looked at.
- {Unique Feature} Content Detection: Can detect if a user is visiting a porn site like pornhub, xvideos, etc. and automatically begin recording the screen, microphone, and webcam and stitches the three together to make a reaction-like video. Useful for blackmail.
- {Unique Feature} OBS Studio Stealer: Grabs stream keys, profiles, scenes, sources, and settings from OBS Studio, Streamlabs OBS, and Streamelements OBS.
All of this should be usable by the attacker running a Linux machine and having port-forwarding setup. The payload should be able to be built from the Linux machine. I'd prefer if the RAT had a GUI, or a Web-UI, but it isn't necessary so long as everything is functional. If it does have a Web-UI I'd prefer if the Web-UI is run on Tor hosting and the payload installs tor silently to the machine so it can route to our secret .onion address.
Willing to pay upwards of $1k USD for this to be done, only accept PayPal Friend and Family, and it would go through a middle-man.
If you are interested in doing this for me, message me on telegram: @neoreturns
![[Image: 114376.gif]](https://external-content.duckduckgo.com/iu/?u=https://giffiles.alphacoders.com/114/114376.gif)
E s c a p e T h e M a t r i x
Telegram: @neoreturns