Thursday, 14 April 2011

SpyEye v1.3 interface


-=[ ProtectionID v0.6.4.0 JULY]=-
(c) 2003-2010 CDKiLLER & TippeX
Build 07/08/10-17:57:05
Ready...
Scanning -> C:\Documents and Settings\Xylitol\Bureau\builder.vmp.exe
File Type : 32-Bit Exe (Subsystem : Win GUI / 2), Size : 9072640 (08A7000h) Byte(s)
-> File has 2560 (0A00h) bytes of appended data starting at offset 08A6600h
[File Heuristics] -> Flag : 00000001000001101101000100100100 (0x0106D124)
[CompilerDetect] -> Visual C++ 10.0 (Visual Studio 2010)
[!] File appears to have no protection or is using an unknown protection
- Scan Took : 0.500 Second(s)


BCK.PNG:



FF.PNG




PNGFIX.JS:
/*
 

Correctly handle PNG transparency in Win IE 5.5 & 6.
http://homepage.ntlworld.com/bobosola. Updated 18-Jan-2006.

Use in <HEAD> with DEFER keyword wrapped in conditional comments:
<!--[if lt IE 7]>
<script defer type="text/javascript" src="pngfix.js"></script>
<![endif]-->

*/


var arVersion = navigator.appVersion.split("MSIE")
var version = parseFloat(arVersion[1])

if ((version >= 5.5) && (document.body.filters))
{
   for(var i=0; i<document.images.length; i++)
   {
      var img = document.images[i]
      var imgName = img.src.toUpperCase()
      if (imgName.substring(imgName.length-3, imgName.length) == "PNG")
      {
         var imgID = (img.id) ? "id='" + img.id + "' " : ""
         var imgClass = (img.className) ? "class='" + img.className + "' " : ""
         var imgTitle = (img.title) ? "title='" + img.title + "' " : "title='" + img.alt + "' "
         var imgStyle = "display:inline-block;" + img.style.cssText
         if (img.align == "left") imgStyle = "float:left;" + imgStyle
         if (img.align == "right") imgStyle = "float:right;" + imgStyle
         if (img.parentElement.href) imgStyle = "cursor:hand;" + imgStyle
         var strNewHTML = "<span " + imgID + imgClass + imgTitle
         + " style=\"" + "width:" + img.width + "px; height:" + img.height + "px;" + imgStyle + ";"
         + "filter:progid:DXImageTransform.Microsoft.AlphaImageLoader"
         + "(src=\'" + img.src + "\', sizingMethod='scale');\"></span>"
         img.outerHTML = strNewHTML
         i = i-1
      }
   }
}

RAPPORT.PNG



 SPYLOGO.PNG:









STYLE.CSS:
a:link {
        color: rgb(0,64,192);
}
a:visited {
        color: rgb(128,128,128);
}
a:active {
        color: rgb(0,192,128);
}
body {
    font-family: Verdana;
    font-size: 10px;
    background-image: url('bck.png');
}
input, textarea {
    border: 1px;
    border-color: gray;
    border-style: solid;
    font-family: Verdana;
    font-size: 10px;
}
table {
        font-family: Verdana;
        color: rgb(102,102,102);
        font-size: 10px;
        border: 0;
}
h1 {
        font-family: Verdana;
        color: rgb(102,102,102);
        font-size: 24 px;
        margin: 0px, 0px, 0px, 0px;
        padding: 0px, 0px, 0px, 0px;
        font-weight: normal;
}
h2 {
        font-family: Verdana;
        color: rgb(102,102,102);
        font-size: 16 px;
        margin: 0px, 0px, 0px, 0px;
        padding: 0px, 0px, 0px, 0px;
        font-weight: normal;
}
h3 {
        font-family: Verdana;
        color: rgb(102,102,102);
        font-size: 12 px;
        margin: 0px, 0px, 0px, 0px;
        padding: 0px, 0px, 0px, 0px;
        font-weight: normal;
}
.comment {
        font-family: Verdana;
        color: rgb(128,128,128);
        font-size: 10px;
        margin: 0;
        padding: 0;
        font-weight: normal;
}
.error {
        font-family: Verdana;
        font-weight: bold;
        color: RGB(255, 0, 0);
        font-size: 10px;
}
.warning {
        font-family: Verdana;
        font-weight: bold;
        color: RGB(225, 225, 0);
        font-size: 10px;
}
.ok {
        font-family: Verdana;
        font-weight: bold;
        color: RGB(0, 225, 0);
        font-size: 10px;
}
.disabled {
    color: #BBBB33;
}
.div_main {
    background-color: #F7F7F7;
    width: 740px;
    border: solid 1px black;
    padding: 10px;
    margin: 0px;
}
.div_smmain {
    background-color: #F7F7F7;
    width: 500px;
    border: solid 1px black;
    padding: 10px;
    margin: 0px;
}
.div_beta {
    position: absolute;
    top: 0px;
    right: 0px;
}

UP.PNG:




104:
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<HTML>
<HEAD>
    <link href="style.css" type=text/css rel=stylesheet>

</HEAD>
<BODY ID=CbuilderDlg>

<center>
<div id="div_main" class="div_main">
    <img src="spylogo.png" width="550px" height="100px" alt="SpyEye logo" title="SpyEye logo" />
   
    <hr size='1' color='#CCC'>
   
    <table cellspacing="0" cellpadding="0" width='100%' border="1" style="border: 2px solid #F7F7F7; border-collapse: collapse;">
        <tr>
        <td width="280px" align='left'><b>Encryption key </b><i>(for config)</i>:</td>
        <td align='left'><input id=tEncryptionKey type=text style="width:300px" value="Your Enc. Key" /></td>
        <td align='left' style="border:1px solid #c1c1c1;">&nbsp;<span style="font-size:9px; color:#C7C7C7;" id="timestamp">timestamp: 0x01234567</span></td>
        </tr>
    </table>
   
    <hr size='1' color='#CCC'>
   
    <table cellspacing="0" cellpadding="0" width='100%' border="1" style="border: 2px solid #F7F7F7; border-collapse: collapse;">
    <tr>
        <td width="50%" align=center style="border:1px solid #c1c1c1;">

    <table cellspacing="0" cellpadding="0" border="0" width='100%'>
        <tr>
        <td width="280px" align='left'>Clear cookies every startup <i>(IE, FF)</i>:</td>
        <td align='left'><input id=cClearCookies type=checkbox style="border:0px" /></td>
        </tr>
        <tr>
        <td width="280px" align='left'>Delete non-exportable certificates:</td>
        <td align='left'><input id=cDeleteNonExportableCert type=checkbox style="border:0px" /></td>
        </tr>
        <tr>
        <td width="280px" align='left'>Don't send http-reports:</td>
        <td align='left'><input id=cDontSendHttpReports type=checkbox style="border:0px" /></td>
        </tr>
    </table>
       
        </td>
        <td width="50%" align=center style="border:1px solid #c1c1c1;" valign='top'>

    <table cellspacing="0" cellpadding="0" border="0" width='100%'>
   
        <tr>
        <td width="330px" align='right'>
            <table cellspacing="0" cellpadding="0" border="0">
                <tr><td><img id="imgAntiRapport" src="rapport.png" alt="Trusteer Rapport" title="Block Trasteer Rapport" border="0" /></td><td>&nbsp;<b><font color='#C02020'>Anti</font>-<a href="http://www.trusteer.com/solutions/home-users/online-security" target="_blank">Rapport</a></b>:</td></tr>
            </table>
        </td>
        <td align='left'><input disabled id=cAntiRapport type=checkbox style="border:0px" checked /></td>
        </tr>
       
        <tr>
        <td width="330px" align='right'>
            <table cellspacing="0" cellpadding="0" border="0">
                <tr><td><img id="imgFF" src="ff.png" alt="Load config" title="Enable FF webinjects" border="0" /></td><td>&nbsp;<b>FF</b> webinjects:</td></tr>
            </table>
        </td>
        <td align='left'><input disabled id=cFFWebinjects type=checkbox style="border:0px" checked /></td>
        </tr>
    </table>
        </td>
    </tr>
    </table>
    <hr size='1' color='#CCC'>

    <table cellspacing="0" cellpadding="0" border="0" width='100%'>
        <tr>
        <td width="280px" align='left'>Compress build by <b>UPX v3.07w</b>:</td>
        <td align='left'><input id=cUPX type=checkbox style="border:0px" /></td>
        </tr>
        <tr><td><hr size='1' color='#CCC'></td></tr>
        <tr>
        <td width="280px" align='left'>Make build without <b>ZLIB</b> support<br><i>(SpyEye may use zlib for unpacking gzip or deflate content at <b>FF</b> webinjects ... so, this option can save 15-16 KB)</i>:</td>
        <td align='left'><input id=cWithoutZLIB type=checkbox style="border:0px" /></td>
        </tr>
        <tr><td><hr size='1' color='#CCC'></td></tr>
        <tr>
        <td width="280px" align='left'>Make <b>LITE</b>-config <br><i>(without webinjects, plugins & screenshots)</i>:</td>
        <td align='left'><input id=cLiteConfig type=checkbox style="border:0px" /></td>
        </tr>
    </table>
   
    <hr size='1' color='#CCC'>
   
    <table cellspacing="0" cellpadding="0" width='100%' border="1" style="border: 2px solid #F7F7F7; border-collapse: collapse;">
    <tr>
        <td width="50%" align=center style="border:1px solid #c1c1c1;">
            <font style='color:red;font-weight:bold;font-size:8px'>*</font> EXE name : <input id=tExeName type=text style="width:150px" maxlength='11' value="cleansweep" />
        </td>
        <td width="50%" align=center style="border:1px solid #c1c1c1;">
            <font style='color:red;font-weight:bold;font-size:8px'>*</font> Mutex name : <input id=tMutexName type=text style="width:150px" maxlength='15' value="SPYNET" />
        </td>
    </tr>
    </table>
   
   
    <hr size='1' color='#CCC'>
   
    <table cellspacing="0" cellpadding="0" width='100%' border="1" style="border: 2px solid #F7F7F7; border-collapse: collapse;">
    <tr>
         <td width="10%" align=center style="border:1px solid #c1c1c1;">
            <a href="#null" onclick=""><img id="bLoadConfig" src="up.png" alt="Load config" title="Load config from settings.ini" border="0" /></a>
         </td>
        <td width="45%" align=center style="border:1px solid #c1c1c1;"><input type=button value="Make config & get build" id=bMakeBuild /></td>
        <td width="45%" align=center style="border:1px solid #c1c1c1;"><div id=dBuildButton style="text-align:center" ></div></td>
    </tr>
    </table>
   
    <!--<br><div id=dBuildResult style="text-align:left" ></div>-->
</div>
</center>

</BODY>
</HTML>

On the past:
SpyEye Builder v1.1.39: Inside the Ressource file

3 comments:

  1. can give me the link of this builder of spyeye?

    ReplyDelete
  2. hi nice work 1.2.99 wanna try two to crack 1.3.xx versions if you can provide uncracked versions

    ReplyDelete
  3. lolllllllllllll!!!!!!!

    ReplyDelete