Skip to content
This repository has been archived by the owner on Dec 11, 2018. It is now read-only.

Latest commit

 

History

History
35 lines (23 loc) · 756 Bytes

Url.md

File metadata and controls

35 lines (23 loc) · 756 Bytes

UPDATE BOOKMARKS - PROJECT MOVED TO A DEDICATED PROJECT SITE. THIS SITE WILL NOT BE UPDATED ANYMORE, BUT WILL BE KEPT FOR HISTORICAL REASONS.

New site: https://github.com/LOLBAS-Project/LOLBAS Web portal: https://lolbas-project.github.io/

Url.dll

  • Functions: Execute
rundll32.exe url.dll,OpenURL "C:\test\calc.hta"    

rundll32.exe url.dll,OpenURL "C:\test\calc.url"     

rundll32.exe url.dll, FileProtocolHandler calc.exe

Acknowledgements:

  • Jimmy - @bohops

Code sample: *

Resources:

Full path:

c:\windows\system32\url.dll
c:\windows\sysWOW64\url.dll

Notes:

Detection: