Jump to content

Power User to Administrator


Recommended Posts

Hmm.. its not a virus its just the packer i used. What should I do then?

Maybe not use a packer and just compile natively? Or better yet, post the source code. Then people can really see what it does without worry.

Link to post
Share on other sites

OK... Sorry about that guys heres the new version. Its packed using UPX now and it shows as clean on most. It shows as Trojan.Dropper.Gen on 2 of them because of the way the program works to exploit a flaw with utilman.exe to allow windows to run a new exe that adds the admin username.

http://www.virustotal.com/analisis/b5dfbd5...a18d-1248275785

Heres the new version ENJOY! :D

h2oh4x_Power_User_Hack.rar

Link to post
Share on other sites

Ok then. Basically the hack is that Power Users have write access to utilman.exe which is what is run when you press Windows Key + U. The thing is when you press this combination the file gets run with SYSTEM privileges. But there is a problem that when you replace utilman.exe with your own customised version it gets replaced by the windows system file protection but it takes about 2 seconds for this to happen giving the app plenty of time to automatically press the Windows Key + U combination running a fake utilman.exe program which adds a username and adds it to the Administrators group as it has been run with SYSTEM privileges.

Well there you have it! so ENJOY! :D

h2oh4x!

Link to post
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

  • Recently Browsing   0 members

    No registered users viewing this page.

×
×
  • Create New...