Post by xtr4nge on Feb 22, 2017 9:53:02 GMT
Original: GitHub: FruityC2-Web-Delivery-(HTA)
FruityC2 can act as a webserver to host files or content. The files (or content) can be generated dynamically using Payloads (Code) section, or you can host the real file using Payloads (File).
Both of this options will be used by the Delivery section to set the paths, name and type for the delivery.
For this tutorial we are going to deliver the stager as an HTA file to the target. The stager will be created using the code generator to then be hosted and delivered.
If you access for first time to the Payloads section, you will see that we don’t have any payload created.
First, we are going to generate the code using the Code Generator (gears icon) on the main menu.
We need to select the Listener that will be used by the Stager, and in this example, select HTA for the Type. Copy the code and close the Code Generator.
To add an entry in Payloads (Code) section, click “+” on “+ Payloads (Code)”. Add a Name and paste the copied code into the Payload input.
You will see that you have a new entry on the Payloads (Code) section.
But the created entry (payload) is not accessible yet, for this, we need to create an entry in the Delivery section, selecting the payload that we want to deliver, the path and the type of delivery (text or file).
To add a new entry in Delivery, click “+” on “+ Web Delivery”.
Add a Name, a Path (the path needs to start with “/”), a Type (in this case “download”), a name for the file that will be downloaded, the type of payload (in this case “code”), and finally, select the payload that you want to deliver, for this example, will be the created payload “FruityC2-HTA”.
Done, you have everything that you need to deliver the payload to the target.
How you deliver the link to the victim is up to you, for example, you can send the link by email. **http://{ip_or_domain_to_FruityC2_listener}/hta**
On the target machine, this is what you will see when the victim clicks on the link.
After the payload is executed, you will see a new machine in the list of agents/targets on FruityC2, and now you can interact with it.
FruityC2 can act as a webserver to host files or content. The files (or content) can be generated dynamically using Payloads (Code) section, or you can host the real file using Payloads (File).
Both of this options will be used by the Delivery section to set the paths, name and type for the delivery.
For this tutorial we are going to deliver the stager as an HTA file to the target. The stager will be created using the code generator to then be hosted and delivered.
If you access for first time to the Payloads section, you will see that we don’t have any payload created.
First, we are going to generate the code using the Code Generator (gears icon) on the main menu.
We need to select the Listener that will be used by the Stager, and in this example, select HTA for the Type. Copy the code and close the Code Generator.
To add an entry in Payloads (Code) section, click “+” on “+ Payloads (Code)”. Add a Name and paste the copied code into the Payload input.
You will see that you have a new entry on the Payloads (Code) section.
But the created entry (payload) is not accessible yet, for this, we need to create an entry in the Delivery section, selecting the payload that we want to deliver, the path and the type of delivery (text or file).
To add a new entry in Delivery, click “+” on “+ Web Delivery”.
Add a Name, a Path (the path needs to start with “/”), a Type (in this case “download”), a name for the file that will be downloaded, the type of payload (in this case “code”), and finally, select the payload that you want to deliver, for this example, will be the created payload “FruityC2-HTA”.
Done, you have everything that you need to deliver the payload to the target.
How you deliver the link to the victim is up to you, for example, you can send the link by email. **http://{ip_or_domain_to_FruityC2_listener}/hta**
On the target machine, this is what you will see when the victim clicks on the link.
After the payload is executed, you will see a new machine in the list of agents/targets on FruityC2, and now you can interact with it.