Macro Malware Lives - Putting the Sexy Back into MS Office Document Macros

Explore the resurgence of macro malware in MS Office documents through this 35-minute conference talk. Delve into various techniques for creating and obfuscating macro payloads, including Metasploit integration, PowerShell execution, and VBA string manipulation. Learn about antivirus evasion strategies, payload prototyping, and automation methods. Gain insights into key management and discover how to enhance the effectiveness of macro-based attacks in modern cybersecurity landscapes.

FAMILY
Metaspoit Macro Payload
Sometimes... A/V will get you
Helpful macro change...
Why not run powershell!
PowerSploit and Macros!
Prototype 2
64-bit payload? Which powershell?
Please help me create a payload..
Msfvenom and UNIX foo
Break up the VB payload string with continuation lines...
Too easy to detect?
Lets obfuscate things
Key management
Prototype 3
Automation time
The End...