WordMacrosGenerator
What are word macros?
According to Microsoft: A macro is a series of commands and instructions that you group together as a single command to accomplish a task automatically.
Word macros can be used to deliver and execute malicious code. While macros can be beneficial for legitimate purposes, they can also be exploited by malicious actors to deliver malware, such as viruses, trojans, or ransomware.
Malicious macros typically rely on social engineering techniques to trick users into enabling or running them. For example, an attacker might send a Word document containing a macro disguised as a legitimate file, such as an invoice or a job application. When the user opens the document and enables macros, the malicious code embedded in the macro can be executed, potentially leading to unauthorized access, data theft, or system compromise.
Automating the process using powershell.
Note : The script I used won’t be shared because it can be used for malicious acts and it could harm some individuals and companies.
For this to work we will need a windows machine and another machine of your choosing (I chose kali).
Step 1 : Configure the Network
Both machines should be configured to NAT
.png?raw=true)
Step 2 : Start a listener
.png?raw=true)
Step 3 : Execute the command
.png?raw=true)
.png?raw=true)
.png?raw=true)
Step 4 : Execute the malicious word document
.png?raw=true)
.png?raw=true)