You must be logged in to view this content.
2 responses to “Malicious Office Documents with VBA Macros”
-
i am trying to use macro for download and execute a file on a remote trusted source but its not working, what am I doing wrong?
-
To really figure out what’s going wrong, we first need to check whether both machines (the one opening the document and the one hosting the payload) are properly connected in the same network specifically, whether they’re using NAT or Bridge networking mode in your virtual environment (VMware, VirtualBox, etc.), and that they’re actually on the same subnet/LAN.
If the machines are not on the same local network (different subnets, different virtual networks, host-only vs. NAT issues, firewall blocking, etc.), then trying to reach the payload via a local IP address like http://192.168.x.x/payload.exe (or similar) from inside the VBA macro will fail.
-
Leave a Reply
You must be logged in to post a comment.