Windows Upload/Execute, Find Tag Ordinal Stager
Use an established connection, Uploads an executable and runs it (staged)
Rank
- Normal
Authors
- vlad902 < vlad902 [at] gmail.com >
- sf < stephen_fewer [at] harmonysecurity.com >
- skape < mmiller [at] hick.org >
Similar Modules
- payload/windows/upexec/bind_ipv6_tcp
- payload/windows/upexec/bind_nonx_tcp
- payload/windows/upexec/bind_tcp
- payload/windows/upexec/reverse_http
- payload/windows/upexec/reverse_ipv6_http
- payload/windows/upexec/reverse_ipv6_tcp
- payload/windows/upexec/reverse_nonx_tcp
- payload/windows/upexec/reverse_ord_tcp
- payload/windows/upexec/reverse_tcp
- payload/windows/upexec/reverse_tcp_allports
Usage Information
$ msfconsole
## ### ## ##
## ## #### ###### #### ##### ##### ## #### ######
####### ## ## ## ## ## ## ## ## ## ## ### ##
####### ###### ## ##### #### ## ## ## ## ## ## ##
## # ## ## ## ## ## ## ##### ## ## ## ## ##
## ## #### ### ##### ##### ## #### #### #### ###
##
msf > use payload/windows/upexec/find_tag
msf payload(find_tag) > set PEXEC [PATH]
msf payload(find_tag) > generate
## ### ## ##
## ## #### ###### #### ##### ##### ## #### ######
####### ## ## ## ## ## ## ## ## ## ## ### ##
####### ###### ## ##### #### ## ## ## ## ## ## ##
## # ## ## ## ## ## ## ##### ## ## ## ## ##
## ## #### ### ##### ##### ## #### #### #### ###
##
msf > use payload/windows/upexec/find_tag
msf payload(find_tag) > set PEXEC [PATH]
msf payload(find_tag) > generate
Module Options
| EXITFUNC | Exit technique: none, thread, process, seh (default: process) |
| PEXEC | Full path to the file to upload and execute |
| AutoRunScript | A script to run automatically on session creation. |
| InitialAutoRunScript | An initial script to run on session creation (before AutoRunScript) |
| TAG | The four byte tag to signify the connection. |
| VERBOSE | Enable detailed status messages |
| WORKSPACE | Specify the workspace for this module |