|Main Archive Page > Month Archives > metasploit-framework archives|
Replying to myself but just realised there's nothing wrong with the payload, only with my brain. When I recompiled the payload I left that hardcoded IP in there (note to self: before posting to list reread the source), thus the problem. It's now solved.
--- On Sun, 7/11/10, Miguel Rios <email@example.com> wrote:
From: Miguel Rios <firstname.lastname@example.org>
Subject: [framework] Lupin's download_exec_vbs payload
Date: Sunday, July 11, 2010, 6:13 PM
Anyone tried this great little gem of a payload that Lupin kindly provided?
I played with it a bit a few days ago and it worked like a charm. However I've noticed the last couple of days that when I generate this payload it seems to always try to connect to a private IP (192.168.56.1) instead of the URL that I provide.
This is quite strange since it was working last week downloading from the provided URL without a hitch, but now it seems that it only wants to go to 192.168.56.1.
Anyone else seeing this lately? Maybe when I svned recently I somehow broke the payload?
-----Inline Attachment Follows-----