I made a POC of a remote shell for windows accessible via TOR hidden services. This could easily be made into a BashBunny payload. See my project description here: https://www.cron.dk/under-the-radar-remote-shell/ Comments are welcome.
If anyone is interested I made a similar version by extending your project a bit. You can find the project here: Poor mans bash bunny I am still fighting getting RNDIS to work driverless on windows. This would require a change in ATTACKMODE. In my project I have a work-around, but it's not very elegant.