def main()

in cortado/rtas/solarmaker_backdoor.py [0:0]

• 25 lines of code
• 1 McCabe index (conditional complexity)

def main():
    reg = "C:\\Windows\\System32\\reg.exe"

    payloadcontent = (
        "Just some Powershell random words to make it to the 200 characters, remember to drink water and"
        "take a walk twice a day, check if your dog has enought food and water too, ah, and go to the"
        "gym, you can do it!!!!"
    )
    regpath = "HKEY_CURRENT_USER\\Software\\Classes\\simul8\\shell\\open"

    # Execute command
    log.info("Creating reg key using fake msiexec")
    _ = _common.execute_command(
        [
            reg,
            "add",
            regpath,
            "/v",
            "command",
            "/t",
            "REG_SZ",
            "/d",
            payloadcontent,
            "/f",
        ],
        timeout_secs=5,
    )

    _ = _common.execute_command([reg, "delete", regpath, "/f"], timeout_secs=5)