A PoC weaponising Custom XML parts for stealthily hiding malware code inside of Office document structures.
Technical explanation described in a dedicated blog post:
The document provided simply displays a message box with a text extracted from a part.
This and other projects are outcome of sleepless nights and plenty of hard work. If you like what I do and appreciate that I always give back to the community, Consider buying me a coffee (or better a beer) just to say thank you! 💪
Mariusz Banach / mgeeky, (@mariuszbit)
<mb [at] binary-offensive.com>