search

boku7 / BokuLoader

A proof-of-concept Cobalt Strike Reflective Loader which aims to recreate, integrate, and enhance Cobalt Strike's evasion features!
MIT License
1.25k stars 244 forks source link

cs4.5 c2profile #24

Closed SD-ZZ closed 1 year ago

SD-ZZ commented 1 year ago

cs4.5 c2profile use sleep_mask=true can‘t work,Whatever userwx is set to

only step instead of the normal three

image

image

boku7 commented 1 year ago

Is that the version of the CRTO lab? I only have 4.8 but if it's in CRTO I'd be able to try and check what the issue is.

Could you give me some more info? Like what's going wrong. Is the CS script failing or are you getting an exception when running? Is there a profile config that works and one that doesn't?

boku7 commented 1 year ago

Could you paste in the full output from the script console and the CS profile options in the stage block (don't need the whole thing)

boku7 commented 1 year ago

Just trying to get enough info to reproduce the issue myself