PR fix (smb exploiters sends telem if service execution failed)

2019-07-08 15:17:26 +03:00 · 2019-07-08 15:17:26 +03:00 · f5ed7e7422
parent 452724c487
commit f5ed7e7422
1 changed files with 3 additions and 1 deletions
--- a/monkey/infection_monkey/exploit/smbexec.py
+++ b/monkey/infection_monkey/exploit/smbexec.py
@ -131,10 +131,12 @@ class SmbExploiter(HostExploiter):
        resp = scmr.hRCreateServiceW(scmr_rpc, sc_handle, self._config.smb_service_name, self._config.smb_service_name,
                                     lpBinaryPathName=cmdline)
        service = resp['lpServiceHandle']
-        T1035Telem(ScanStatus.USED, "SMB exploiter ran the monkey by creating a service via MS-SCMR.").send()
        try:
            scmr.hRStartServiceW(scmr_rpc, service)
+            T1035Telem(ScanStatus.USED, "SMB exploiter ran the monkey by creating a service via MS-SCMR.").send()
        except:
+            T1035Telem(ScanStatus.SCANNED,
+                       "SMB exploiter failed to run the monkey by creating a service via MS-SCMR.").send()
            pass
        scmr.hRDeleteService(scmr_rpc, service)
        scmr.hRCloseServiceHandle(scmr_rpc, service)