Locked lnkbomb: Malicious shortcut generator for collecting NTLM hashes

By itsMe
March 8, 2022 in Pentesting

Followers 0

Start new topic

Recommended Posts

itsMe

Posted March 8, 2022

- Share

Posted March 8, 2022

This is the hidden content, please

Lnkbomb is used for uploading malicious shortcut files to insecure file shares. The vulnerability exists due to Windows looking for an icon file to associate with the shortcut file. This icon file can be directed to a penetration tester’s machine running Responder or smbserver to gather NTLMv1 or NTLMv2 hashes (depending on the configuration of the victim host machine). The tester can then attempt to crack those collected hashes offline with a tool like Hashcat.

The payload file is uploaded directly to the insecure file specified by the tester in the command line. The tester includes their IP address as well, which is written into the payload.

This is the hidden content, please

Link to comment

Share on other sites

This topic is now closed to further replies.

Followers 0

Go to topic listing

Similar Content
- SharpOD x64 (A_AntiDebug Plugin. Support for x64dbg)
  
  By itsMe, December 5, 2021
  - for
  - support
  - (and 5 more)
    
    Tagged with:
    
    for
    
    support
    
    plugin.
    
    (a_antidebug
    
    x64
    
    sharpod
    
    x64dbg)
  - 0 replies
  - 1,672 views
- How to sniff API of android aps For making configs
  
  By itsMe, May 20, 2021
  - making
  - for
  - (and 6 more)
    
    Tagged with:
    
    making
    
    for
    
    aps
    
    android
    
    api
    
    sniff
    
    how
    
    configs
  - 0 replies
  - 265 views
- How To Make Simple APP Config(API) In OPENBULLET Using Fiddler
  
  By itsMe, March 24, 2023
  - easiest
  - configs
  - (and 8 more)
    
    Tagged with:
    
    easiest
    
    configs
    
    openbullet
    
    api
    
    android
    
    making
    
    for
    
    setup
    
    how
    
    method
  - 0 replies
  - 528 views
- TweakNow WinSecret Plus! for Windows 11 and 10 4.6.0
  
  By itsMe, April 27, 2023
  - tweaknow
  - winsecret
  - (and 5 more)
    
    Tagged with:
    
    tweaknow
    
    winsecret
    
    plus!
    
    for
    
    windows
    
    and
    
    4.6.0
  - 0 replies
  - 295 views
- Ai2Pen v2.7 – AI Writing Assistant and Content Generator (SaaS Platform) - Nulled
  
  By itsMe, April 27, 2023
  - (saas
  - platform)
  - (and 8 more)
    
    Tagged with:
    
    (saas
    
    platform)
    
    nulled
    
    generator
    
    content
    
    and
    
    assistant
    
    writing
    
    v2.7
    
    ai2pen
  - 0 replies
  - 446 views

Sign In

Locked lnkbomb: Malicious shortcut generator for collecting NTLM hashes

Recommended Posts

itsMe

Link to comment

Share on other sites

Similar Content

SharpOD x64 (A_AntiDebug Plugin. Support for x64dbg)

How to sniff API of android aps For making configs

How To Make Simple APP Config(API) In OPENBULLET Using Fiddler

TweakNow WinSecret Plus! for Windows 11 and 10 4.6.0

Ai2Pen v2.7 – AI Writing Assistant and Content Generator (SaaS Platform) - Nulled

Browse

Activity

Store

Important Information