hi,
first of all you need to know that there is two tricks with archive file, switch trick method and a weird method.
Archive Method 1 :
- You need to have your payload.exe, an image file "example.PNG" or .JPEG and this same file with .ICO (and winrar)
- Select all of 3 files, right click
- Click on "Create SFX Archive" & change the file name on the top by "payload.jpg" for example
- Go to advanced section, click on SFX option then setup
- In "run after exctraction" you have to write your "payload.exe" go to new line then add your "example.PNG"
- Then go to modes & select unpack to temporary folder
- Then go to text and icon, click on load SFX icon from file then select your .ICO file
- Then go to update, select "extract and update files" & Overwrite all files Thats it click ok
And you have you file.png with a payload behind.
Archive Method 2 :
- Make an archive of your payload.exe in a zip file
- Open your zip file in a hexeditor
- Change the extension your payload.exe by identifying "exe" to replace it by "jpg" or anything
- Then you can retrieve your file in your archive with the extension spoofed
if you try to execute your payload.png for example it will trigger it (I don't if still working)
Switch trick :
- Rename your payload.exe by "payloadgpj.exe" or fdp,gnp,rar ... (any extension reversed)
- Copy the RIGHT-TO-LEFT OVERRIDE character
- Rename your file and paste it like : payload[here]gpj.exe
- Then type enter and you got it
You can see it is now payloadexe.jpg
Weird windows trick :
- Rename your extension of your payload.exe by any extension for example payload.pdf
- Open cmd try to execute payload.pdf and you can see that it trigger the payload
first of all you need to know that there is two tricks with archive file, switch trick method and a weird method.
Archive Method 1 :
- You need to have your payload.exe, an image file "example.PNG" or .JPEG and this same file with .ICO (and winrar)
- Select all of 3 files, right click
- Click on "Create SFX Archive" & change the file name on the top by "payload.jpg" for example
- Go to advanced section, click on SFX option then setup
- In "run after exctraction" you have to write your "payload.exe" go to new line then add your "example.PNG"
- Then go to modes & select unpack to temporary folder
- Then go to text and icon, click on load SFX icon from file then select your .ICO file
- Then go to update, select "extract and update files" & Overwrite all files Thats it click ok
And you have you file.png with a payload behind.
Archive Method 2 :
- Make an archive of your payload.exe in a zip file
- Open your zip file in a hexeditor
- Change the extension your payload.exe by identifying "exe" to replace it by "jpg" or anything
- Then you can retrieve your file in your archive with the extension spoofed
if you try to execute your payload.png for example it will trigger it (I don't if still working)
Switch trick :
- Rename your payload.exe by "payloadgpj.exe" or fdp,gnp,rar ... (any extension reversed)
- Copy the RIGHT-TO-LEFT OVERRIDE character
- Rename your file and paste it like : payload[here]gpj.exe
- Then type enter and you got it
You can see it is now payloadexe.jpg
Weird windows trick :
- Rename your extension of your payload.exe by any extension for example payload.pdf
- Open cmd try to execute payload.pdf and you can see that it trigger the payload