Tag: macros
-
New article: Run your malicious VBA macros anywhere!
Office documents have over many decades been used to launch malware, often through macros, embedded content or exploits. Researcher Kurt Natvig wanted to understand whether it’s possible to recompile VBA macros to another language, which could then easily be ‘run’ on any gateway, thus revealing a sample’s true nature in a safe manner. In a…
-
VB2020 presentation: Evolution of Excel 4.0 macro weaponization
The use by attackers of legitimate Excel 4.0 (XL4) macros as a simple and reliable method to gain a foothold on a target network is becoming increasingly popular and presents a significant challenge for organizations and defenders alike. For many organizations blacklisting isn’t a viable solution, and for defenders, building reliable signatures for this type…
-
New paper: Powering the distribution of Tesla stealer with PowerShell and VBA macros
Ever since their return more than four years ago, initially in targeted attacks and later in large-scale malware campaigns, Office macros have been one of the most prominent ways to spread malware. Today, we publish a research paper by Aditya K. Sood and Rohit Bansal of SecNiche Security , in which they analyse a malware…
-
New paper: Powering the distribution of Tesla stealer with PowerShell and VBA macros
Ever since their return more than four years ago, initially in targeted attacks and later in large-scale malware campaigns, Office macros have been one of the most prominent ways to spread malware. Today, we publish a research paper by Aditya K. Sood and Rohit Bansal of SecNiche Security , in which they analyse a malware…