Welcome to HBH! If you have tried to register and didn't get a verification email, please using the following link to resend the verification email.

Scrap Virus


Scrap Virus

By ghostghost | 8554 Reads |
0     0

Thanks to AbSoRb for doing something weird with the first article! For help with Flash8 Animating, Encryption challenges, Tracking challenges, Realistic8, Social Engineering challenges check out 'the_flash' account!

'Scrap Virus'.

What is and how? //Thanks to Support.Microsoft.com for this batch of information

In Microsoft Word and Microsoft Excel, you can drag and drop selected document text, drawing objects, and graphics to the Windows desktop. A desktop icon is created for the scrap file, along with a file located in the Windows\Desktop subfolder with an .shs extension. This file is a native program document that contains the information that was selected and dragged onto the Windows desktop. If you select and delete the desktop icon, the corresponding .shs file is also deleted. You can select and drag a scrap file on the desktop into another document.

NOTE: The scrap file is a special OLE object and is not a readable file. You cannot open an .shs file nor can you insert it into another document (for example, you cannot insert an .shs file by using the File command on the Insert menu in Word). To place a scrap into a document or workbook, you must drag it to the document. However; you can rename the scrap object or move it from one directory to another just as you can rename or move an ordinary file.

The Word for Windows scrap file document contains margin settings of 0 (zero) inches. When you drag the scrap document into another Word document, the scrap file conforms to the page setup of the existing Word document; thus, only the contents of the scrap file are transferred into the Word document.

//Thanks to another source from the web Information retrieved via other member

Current versions of Windows do not show the file extension "SHS" by default, even if you turn off "Hide known filetypes" setting in Explorer.

To make SHS and some other extensions (such as LNK) visible, remove these keys from registry:

HKEY_CLASSES_ROOT\shellscrap\nevershowext HKLM\software\classes\shellscrap\nevershowext

//start of tutorial

How can we make one that will execute a command line?

Fairly simple! This technique works on Microsoft XP Home and Pr0 editions. (Others I have not tested)

Open up 'Word Pad'. ( Start > All Programs > Accessories > Word Pad )

Now you have a blank docu<i></i>ment. This is where we create the 'object'.

Points to the toolbar at the top Click 'Insert' and you need to click 'Object'

Now you should have a rectangular box appear with the options to the left as:- 'Create New'and 'Create from file'.

Select create from file.

You now want to open 'notepad.exe'. Located in folder 'system32'. You can do this two ways… First way:- Pasting 'C:\WINDOWS\system32\notepad.exe' into the file path.

Second way:- Browse > My computer > Local Disc C > docu<i></i>ments and Settings > Click your XP User account > Start menu > Accessories > notepad. Now click Open and Ok.

Now in the top left of your document you should have an outlined box with some random squares. In the middle 'Notepad.exe'. If you have Brilliant! Next step. If not… Re-do the previous step.

Now we want to add the command of our choice to the object.

Right click the object and click 'Package Object' then 'Edit Package'.

If you have done this correctly which I sure as hell hope you have, you should now have a rectangular box open titled 'Object Packager'.

points to the toolbar at the top Click 'Edit'. Notice the last available option … 'Command line'. WE WANT THAT!

Now ANOTHER rectangular box should come up with an input field. This is where we put the command. Be creative! Use www.ss64.com/nt for more commands.

eg. ' shutdown /c "Toodle-pip" -t/:300' That will shutdown the computer in 300 seconds. For that 300 it will say "Toodle-pip".

Note:- System_Meltdown made a very good point that giving the shutdown be 300 seconds the user could abort shutdown. (See comments) System corrected this with 'shutdown -s -c "Byezybye!!" -t 01' See comments for full comment. Thanks system_meltdown

Once you have your command in, close and save changes. Now copy and paste the object into My documents or any folder of your choice and it should be renamed 'Scrap.shs'. Voila! Done!

Now when you open this file the command will execute. Bind it, Zip it, Send it. You decide.

Note// Don't come running to me crying pointing the finger if you do anything wrong to any computer because frankly, I have no time for your stupidity.

ENJOY! xD

//NOTE:- Please leave comment or rating ^^

Comments
ghost's avatar
ghost 18 years ago

finally got this published ! :D Well done on the article, can't wait to try it out :)

ghost's avatar
ghost 18 years ago

Nice :)

ghost's avatar
ghost 18 years ago

doesnt windows xp give some sort of warning when it attempts to open a scrap file? I thought for sure when i used xp it gave that "malicious code could execute if you continue to open this file" dialog…but i cant be sure. Im using windows 2000 right now so i cant check, but maybe someone could check for me? ;)

ghost's avatar
ghost 18 years ago

I'm not going to check for you because there is no scrap file I would ideally like to execute on my computer. Points to article I said 'Bind' the scrap so it's hidden from the computer.

SySTeM's avatar
SySTeM 18 years ago

Nice article man, one thing, for your shutdown thing, that can be aborted using 'shutdown -a' if it's set for 300 secs, you should do this: 'shutdown -s -c "Byezybye!!" -t 01', that'll shut down in one second, giving the user time to read the message :)

ghost's avatar
ghost 18 years ago

Hah that's a very good point! //edits article with credit

ghost's avatar
ghost 18 years ago

im not sure if my syntax is completely correct, but is there not a way oh doing zero time the -y or something so it shuts down straight away, may be completely stupid here.

ghost's avatar
ghost 18 years ago

' -f ' is the command for shutdown without warning. this stops any option to save current data or close apps. ;)

mrdj204's avatar
mrdj204 18 years ago

how would i bind it?

ghost's avatar
ghost 18 years ago

Using Google to look up binding files :)

ghost's avatar
ghost 18 years ago

Very nice article! Helped me out so much

ghost's avatar
ghost 17 years ago

easier thing to do when locating notepad is to just drag and drop the notepad from your start menu to my documents.. also…. V nice article! im defo using it at school!

Rating : awsome

kaden's avatar
kaden 17 years ago

cool… thinks about school to hmm… can do some damage :evil: great article rating=awsome