![]() ![]() To send a mail only a few lines are needed: This means that we can abuse Outlook functionalities from within Excel, so we can look for confidential information inside the inbox or we can exfiltrate data via mails. This time we are going to shift our focus to Outlook.įirst of all we have to say that you can interact with Outlook directly from other Microsoft Office apps via VBA using the object Outlook.Application. In our first chapter we talked about the concept of “Hacking in a epistolary way”, where we started to implement attacks and TTPs directly in VBA macros avoiding process injections, dropping binaries or calling external programs that are flagged (like Powershell). Is it a self-spreading Excel saying ILOVEYOU? (Exfiltration & Propagation) We have scheduled an exorcism this weekend to release his daemons, so he can write again about vulnerabilities and other stuff different to VBA. ![]() We promise this is the last time will publish about VBA. Please, take a seat and listen to the story. This time we are going to talk about how to interact with Outlook from Excel using macros, and also we are going to release a PoC where we turn Outlook into a keylogger. Dear Fell owlship, today’s homily is the last chapter of our trilogy about our epistolary-daemonic relationship with VBA. ![]()
0 Comments
Leave a Reply. |