Recently, I need a shellcode to download and execute an .exe file on Windows 7 for my experiment. However, there is not such a shellcode available.
Meanwhile, the download and execution shellcode generated by Metasploit Framework, currently, is unable to work on Windows 7, and the search on the Internet does not bring about desirable results.
With reference to the shellcode of “SkyLined” and some other shellcodes from milw0rm.com, I wrote a shellcode at my own discretion. And this is the result I would like to share with you:
As can be seen, the URL is placed at the end of the shellcode.
Download ASM source code
The shellcode was successfully experimented on Windows 7, and perhaps it can also work on Windows 2000 and later versions.
Le Manh Tung
Senior Security Researcher