Macro Office Exploit

[pruned_62471256]

Here is example of Macro Office exploit, The detection rate is 7/35 and if you work on it it will be 0/35

 

Hidden Content
You'll be able to see the hidden content once you reply to this topic or

Please Login or Register to see this Hidden Content

.

[pruned_82626945]

Thank you this will be very handy! any advice on 0/35?

[kiko0735]

lol, seen this alot of times, but i guess we have 2 obfuscate it?

[Rivaldo00]

ty

[elisha13]

Thanks a Loot!!! 

[Kaname]

thank you ..Great share (Y)

[pruned_58744019]

How about the refud procedure bro?

[pruned_54198522]

How about the refud procedure bro?

 

Few things you can try to reFUD it.

 

First of all you need some basic coding knowledge otherways you shouldn't be reFUDing.

 

 

1. Remove parts of the macro untill it's FUD on the scanner. Then try to do the following things with the code you had to remove to make it FUD.

2. Change variable names.

3. Change the order of the code.

4. Try to change or use an encryption, if it hasn't already one on it, on parts of the code where it's possible.

5. Recode certain parts if you really can't get it FUD without changing that certain part.

[SpheXii]

thanks!

[NotACop]

will refud it