From f2a52d27df8e360a0dc429220adbf574fe4e184a Mon Sep 17 00:00:00 2001
From: Ylian Saint-Hilaire <ysainthilaire@hotmail.com>
Date: Wed, 16 Dec 2020 11:23:07 -0800
Subject: [PATCH] Windows msh exe insertion fix.

---
 exeHandler.js | 15 ++++++++-------
 webserver.js  |  6 +++---
 2 files changed, 11 insertions(+), 10 deletions(-)

diff --git a/exeHandler.js b/exeHandler.js
index 206d9b37..fb65eb36 100644
--- a/exeHandler.js
+++ b/exeHandler.js
@@ -87,6 +87,7 @@ module.exports.streamExeWithMeshPolicy = function (options) {
     if (!options.destinationStream) { throw ('destination stream was not specified'); }
     if (!options.sourceFileName) { throw ('source file not specified'); }
     if (!options.msh) { throw ('msh content not specified'); }
+    options.mshbuf = Buffer.from(options.msh, 'utf8');
 
     // If a Windows binary, parse it if not already parsed
     if ((options.platform == 'win32') && (!options.peinfo)) { options.peinfo = module.exports.parseWindowsExecutable(options.sourceFileName); }
@@ -98,9 +99,9 @@ module.exports.streamExeWithMeshPolicy = function (options) {
         options.destinationStream.sourceStream.options = options;
         options.destinationStream.sourceStream.on('end', function () {
             // Once the binary is streamed, write the msh + length + guid in that order.
-            this.options.destinationStream.write(this.options.msh); // MSH
+            this.options.destinationStream.write(this.options.mshbuf); // MSH
             var sz = Buffer.alloc(4);
-            sz.writeUInt32BE(this.options.msh.length, 0);
+            sz.writeUInt32BE(this.options.mshbuf.length, 0);
             this.options.destinationStream.write(sz); // Length in small endian
             this.options.destinationStream.end(Buffer.from((this.options.randomPolicy === true) ? exeNullPolicyGuid : exeMeshPolicyGuid, 'hex'));  // Guid
         });
@@ -109,9 +110,9 @@ module.exports.streamExeWithMeshPolicy = function (options) {
     } else if (options.platform == 'win32' && options.peinfo.CertificateTableAddress != 0) {
         // Read up to the certificate table size and stream that out
         options.destinationStream.sourceStream = require('fs').createReadStream(options.sourceFileName, { flags: 'r', start: 0, end: options.peinfo.CertificateTableSizePos - 1 });
-        options.destinationStream.sourceStream.mshPadding = (8 - ((options.peinfo.certificateDwLength + options.msh.length + 20) % 8)) % 8; // Compute the padding with quad-align
-        options.destinationStream.sourceStream.CertificateTableSize = (options.peinfo.CertificateTableSize + options.msh.length + 20 + options.destinationStream.sourceStream.mshPadding); // Add to the certificate table size
-        options.destinationStream.sourceStream.certificateDwLength = (options.peinfo.certificateDwLength + options.msh.length + 20 + options.destinationStream.sourceStream.mshPadding); // Add to the certificate size
+        options.destinationStream.sourceStream.mshPadding = (8 - ((options.peinfo.certificateDwLength + options.mshbuf.length + 20) % 8)) % 8; // Compute the padding with quad-align
+        options.destinationStream.sourceStream.CertificateTableSize = (options.peinfo.CertificateTableSize + options.mshbuf.length + 20 + options.destinationStream.sourceStream.mshPadding); // Add to the certificate table size
+        options.destinationStream.sourceStream.certificateDwLength = (options.peinfo.certificateDwLength + options.mshbuf.length + 20 + options.destinationStream.sourceStream.mshPadding); // Add to the certificate size
         options.destinationStream.sourceStream.options = options;
 
         options.destinationStream.sourceStream.on('end', function () {
@@ -138,9 +139,9 @@ module.exports.streamExeWithMeshPolicy = function (options) {
                 source3.on('end', function () {
                     // We've sent the entire binary... Now send: Padding + MSH + MSHLength + GUID
                     if (this.mshPadding > 0) { this.options.destinationStream.write(Buffer.alloc(this.mshPadding)); } // Padding
-                    this.options.destinationStream.write(this.options.msh); // MSH content
+                    this.options.destinationStream.write(this.options.mshbuf); // MSH content
                     var sz = Buffer.alloc(4);
-                    sz.writeUInt32BE(this.options.msh.length, 0);
+                    sz.writeUInt32BE(this.options.mshbuf.length, 0);
                     this.options.destinationStream.write(sz); // MSH Length, small-endian
                     this.options.destinationStream.end(Buffer.from((this.options.randomPolicy === true) ? exeNullPolicyGuid : exeMeshPolicyGuid, 'hex')); // Guid
                 });
diff --git a/webserver.js b/webserver.js
index 6ba7eb36..55d5dfab 100644
--- a/webserver.js
+++ b/webserver.js
@@ -4325,7 +4325,7 @@ module.exports.CreateWebServer = function (parent, db, args, certificates) {
                     if (domain.agentcustomization.companyname != null) { meshsettings += 'companyName=' + domain.agentcustomization.companyname + '\r\n'; }
                     if (domain.agentcustomization.servicename != null) { meshsettings += 'meshServiceName=' + domain.agentcustomization.servicename + '\r\n'; }
                 }
-                //if (parent.agentTranslations != null) { meshsettings += 'translation=' + parent.agentTranslations + '\r\n'; }
+                if (parent.agentTranslations != null) { meshsettings += 'translation=' + parent.agentTranslations + '\r\n'; }
                 setContentDispositionHeader(res, 'application/octet-stream', meshfilename, null, argentInfo.rname);
                 obj.parent.exeHandler.streamExeWithMeshPolicy({ platform: 'win32', sourceFileName: obj.parent.meshAgentBinaries[req.query.id].path, destinationStream: res, msh: meshsettings, peinfo: obj.parent.meshAgentBinaries[req.query.id].pe });
             }
@@ -4632,7 +4632,7 @@ module.exports.CreateWebServer = function (parent, db, args, certificates) {
             if (domain.agentcustomization.companyname != null) { meshsettings += 'companyName=' + domain.agentcustomization.companyname + '\r\n'; }
             if (domain.agentcustomization.servicename != null) { meshsettings += 'meshServiceName=' + domain.agentcustomization.servicename + '\r\n'; }
         }
-        //if (parent.agentTranslations != null) { meshsettings += 'translation=' + parent.agentTranslations + '\r\n'; }
+        if (parent.agentTranslations != null) { meshsettings += 'translation=' + parent.agentTranslations + '\r\n'; }
 
         // Setup the response output
         var archive = require('archiver')('zip', { level: 5 }); // Sets the compression method.
@@ -4731,7 +4731,7 @@ module.exports.CreateWebServer = function (parent, db, args, certificates) {
             if (domain.agentcustomization.companyname != null) { meshsettings += 'companyName=' + domain.agentcustomization.companyname + '\r\n'; }
             if (domain.agentcustomization.servicename != null) { meshsettings += 'meshServiceName=' + domain.agentcustomization.servicename + '\r\n'; }
         }
-        //if (parent.agentTranslations != null) { meshsettings += 'translation=' + parent.agentTranslations + '\r\n'; }
+        if (parent.agentTranslations != null) { meshsettings += 'translation=' + parent.agentTranslations + '\r\n'; }
         return meshsettings;
     }