[BugReport] Can't get LEFTARROW to work on Win7 UAC

[billkearson]

Hello,

I just got my duck a few days ago and got a simple "Hello World" app to run without issue.

Now I am trying to run the "Reverse Shell" form the site http://avocado.hak5.org/ .

Everyhting works if I time it right and click into an already existing shell.

The problem I have is that the LEFTARROW below does not seem to happen and the shell never comes up.

This defaults to selecting NO in the box when this happens.

I have tried adding a delay after it, using the LEFT command instead, and even reflashing the duck with the same results.

Inject.bin files come form the site mentioned above with the parameters 8080 and 127.0.0.1.

Ii also tried to build from the online duck encoder site with the same results; http://www.iducke.com/Encoder/IDE.

I am running win7 x64 and would appreciate any help.

DELAY 4000
ESCAPE
CONTROL ESCAPE
DELAY 400
STRING cmd
DELAY 400
MENU
DELAY 400
STRING a
DELAY 1500
LEFTARROW
DELAY 1500
ENTER
DELAY 1500
STRING copy con c:\decoder.vbs

Edited February 6, 2013 by midnitesnake
Corrected Formatting

[no42]

Have you tried Encoder version 2.2?

[billkearson]

No, I realize now that the online http://www.iducke.com/Encoder/IDE is version 1.2.

Not sure what version that the "Reverse Shell" is on http://avocado.hak5.org.

I will try this and report back.

Thanks.

[billkearson]

Tried it with encoder v2.2 and have the same results.

Can not perform the LEFTARROW or LEFT command to get to the admin command prompt.

[DrDinosaur]

To run something like the CMD as admin, get to the UAC and try "ALT Y"

[armyofangels]

Yeah, this way it should work (only with english/us windows version)

[billkearson]

Sweet, I have reverse shell.

Using "ALT y" worked for me where LEFTARROW did not in this case.

Thank you for your help midnitesnake, DrDinosaur and armyofangels.