[ Topic ] BadUSB - Payload Under SYSTEM
by 0x27 - Saturday July 8, 2023 at 12:47 AM
#1
[Image: 2pdXomC.png]



So you've got a badusb or cheaper equivalent (malduino / digispark) that performs HID attacks. Well, lets see what we can do with that. I've created a malicious powershell command that downloads your malware / shellcode and executes it on the victims machine and attempts to elevate your malicious process to run under the SYSTEM context. Below is the script and a more detailed explanation as what takes place. Enjoy.

Hidden Content
You must register or login to view this content.

This forum account is currently banned. Ban Length: (Permanent)
Ban Reason: File an appeal
Reply
#2
More powerful when using with hoaxshell
Reply
#3
you can use any C2 or Rat as you'd like Smile
This forum account is currently banned. Ban Length: (Permanent)
Ban Reason: File an appeal
Reply
#4
(07-08-2023, 12:55 AM)0x27 Wrote: you can use any C2 or Rat as you'd like Smile

Thanks for this
Reply
#5
This code is definitely as valuable for spreading malware as it is for saturating a computer.

nice information!
This forum account is currently banned. Ban Length: (Permanent)
Ban Reason: Scraping | Contact us via https://breachforums.hn/contact if you feel this is incorrect.
Reply
#6
(07-13-2023, 06:48 PM)B3ulah1 Wrote: This code is definitely as valuable for spreading malware as it is for saturating a computer.

nice information!

my pleasure
This forum account is currently banned. Ban Length: (Permanent)
Ban Reason: File an appeal
Reply
#7
Thanks for share
Reply
#8
Great tutorial man! Cool
[Image: st0jke-s-SIG.png]
Reply
#9
(07-08-2023, 12:54 AM)bytemafia Wrote: More powerful when using with hoaxshell

how do you combine or use it please?
This forum account is currently banned. Ban Length: (Permanent)
Ban Reason: Attempting to sell credit card information
Reply
#10
this is awesome thanks you
Reply


Possibly Related Threads…
Thread Author Replies Views Last Post
  [ Topic ] Malware Evasion - What is Code Signing? 0x27 40 7,703 04-04-2025, 07:55 PM
Last Post: NX000
  [ Topic ] Malware Evasion - Persistent Malware WatchDog DLL 0x27 10 6,254 02-06-2025, 05:02 PM
Last Post: exynos01
  Embed Payload In Png Aanya 4 653 10-30-2024, 05:03 AM
Last Post: Aanya
  [ Topic ] ChatGPT - Progression of Malware [Part II] 0x27 6 3,769 01-12-2024, 04:18 AM
Last Post: 0x27
  [ TOPIC ] We need to see more activity here. 0x27 5 2,409 01-11-2024, 10:09 PM
Last Post: GrassCrab

Forum Jump:


 Users browsing this thread: 2 Guest(s)