⚠️ Security Warning

ClickFix lures can lead to malware and computer viruses. If you see text like this online, it's likely a scam.

Back to Techniques

ftp.exe

ftp.exe is the native Windows client for the File Transfer Protocol. Any input prefixed by a ! exclamation point will be treated as a shell command. You can copy and paste a payload that just begins with a ! exclamation point, like: !calc.exe

windows cli UAC

Upload Your ID Verification

Try Example

Submit your ID verification using our secure file transfer protocol. Follow these steps:

  1. Press Win-R on your keyboard.

  2. Type ftp and press Enter.

  3. Press Ctrl-V to paste the desired configuration.

  4. Press Enter to submit.

References:

Mitigations:

  • Verify identity verification requests through official channels

  • Never run system commands for verification purposes

  • Use official identity verification services

Receive a file that was shared with you

Try Example
UAC

  1. Press Win on your keyboard.

  2. Type ftp and press Ctrl+Shift+Enter.

  3. Click Yes when prompted

  4. Press Ctrl-V to paste the desired configuration.

  5. Press Enter to submit.

References:

Mitigations:

  • Never run commands from unsolicited sources

  • Verify file transfer requests through official channels

  • Be suspicious of requests to use command-line tools

  • Use official file sharing services instead of FTP commands