Apollo icon indicating copy to clipboard operation
Apollo copied to clipboard

Published 20 hours ago verified publisher icon MythicAgents

shellcode not work

Open XXXE88 opened this issue 1 year ago • 4 comments

I chose Build Parameter is shellcode but the payload view is apollo.exe image

XXXE88 avatar Nov 12 '24 05:11 XXXE88

Same issue here, i've reviewed the code and it seems there are build parameters missing inside Mythic webui =>

@ Screenshot from 2024-11-15 20-47-10

ZZ0R0 avatar Nov 15 '24 19:11 ZZ0R0

The apollo.exe you're seeing on that screen is just a default placeholder. It is in no way modified by any choice you made in the UI. If you want Apollo's specific build process to take your options and automatically update the file extension for you, there's now the adjust_filename flag you can toggle to True. By default, if the filename is apollo.exe and you generate shellcode, then you'll have shellcode with a filename of apollo.exe.

its-a-feature avatar Nov 15 '24 19:11 its-a-feature

If there's parameters in Apollo's code that you don't see in the UI, then that likely means you need to update your version of Apollo. sudo ./mythic-cli install github https://github.com/mythicagents/apollo -f should do it.

its-a-feature avatar Nov 15 '24 19:11 its-a-feature

Were you able to update your agent and get the parameters you're missing?

its-a-feature avatar Jan 18 '25 14:01 its-a-feature