Skip to content
This repository has been archived by the owner on May 2, 2021. It is now read-only.

VanillaRAT Guide

Jump to bottom
Daniel Huinda edited this page May 17, 2019 · 6 revisions

Setting VanillaRAT Up

Networking:

  • Port Forwarding: To get started with using VanillaRAT on foreign computers, you must open a port. The default port on VanillaRAT is 1604, however this can be changed through the settings. You must open the port on at least TCP. Follow your internet providers instructions on opening ports; this is normally achieved by opening command prompt, typing in ipconfig, copying the default gateway entry, pasting it in the web link bar, and accessing your routers firewall settings.
  • Dynamic DNS: While a DNS address is not required a lot of the time, it is extremely recommended. To set up a dynamic DNS address, go to https://www.noip.com/. Set up an account, and create a host name, it should be a -A record. Download the DUC updater application, add your hostname on it, and you should be set up.

Settings:

  • Port: Set your port to the one you opened earlier.
  • Update Interval: You may leave this alone, or tune this for performance. This is how often the server checks for, and sends data.

Hit save once you are done configuring VanillaRAT.

Builder:

  • Port: Set the port to the one you opened earlier.
  • DNS: Add your host name that you created earlier, or 127.0.0.1 for local host (the client will not be foreign).
  • Client Tag: Set a client tag, this will be how you identify the client.
  • Name: Set an EXE name, this will be the output name of the executabe.
  • Update Interval: You may leave this alone, or tune this for performance. This is how often the client checks for, and sends data.
  • Install: Enable/Disable this setting for the client to be dropped in the application data folder.
  • Startup: Enable/Disable this setting for the client to be added to startup.

Hit build once you are done setting up your client. The client will build, and open the clients folder.

Using VanillaRAT

Controls:

  • Start: Starts server on the port configured.
  • Stop: Stops server.

Client (Right Click On Client):

  • Client Controls:

Kill Process: Uninstalls the application, then exits it self.

Disconnect: In case of connection issues, this will disconnect the client, and it will enter the reconnect loop again.

Raise Permission Level: Requests client for administration mode raise.

Update: Allows you to upload and replace the old client with a newly built one.

  • Client Computer Controls:

Start Screen Locker: Locks the clients screen (press this again to unlock).

  • Client Information:

Get Running Applications: Opens task manager, once on the task manager, right click to access more features.

Get Computer Info: Grabs computer information including relative location based on IP (if client is using VPN, this will be inaccurate).

Open File Browser: Opens file browser, once on the file browser, right click to access more features. You may also drag and drop files to upload them.

Get Clipboard Text: Gets copied text.

Get Hardware Usage: Shows a graph that shows CPU usage, disk usage, and RAM available.

  • Client Communication:

Send Message Box: Shows a message box based on what is in the fields that are filled in.

Send Text To Speech: Starts playing text to speech based on what is in the fields that are filled in.

Open Chat: Opens a chat to the client that does not close (client side) until you close your chat.

  • Client Extras:

Live Keylogger: Opens a live keylogger.

Remote Desktop: Allows you to view what client is doing.

Remote Shell: Opens a command prompt, right click to switch to powershell.

Audio Recorder: Opens a microphone recorder.

Open Website: Allows you to open a website with a given link.

Toggle Anti-Process: Prevents applications such as task manager and Process Killer from opening.

Clone this wiki locally