XLM Macros

XLM Macros is a blue team lab that falls under the Malware Analysis category and will cover the following subjects: REMnux VM, XLMDeobfuscator, OLEDUMP with PLUGIN_BIFF, Office IDE, Execution, Persistence, Defense Evasion, Discovery, Command and Control, Impact.

Learning Objectives

Analyze Excel 4.0 macros using XLMDeobfuscator and OLEDUMP to identify anti-analysis techniques and subsequent stage download attempts.

Categories: Malware Analysis.

MITRE ATT&CK Tactics: Execution, Persistence, Defense Evasion, Discovery, Command and Control, Impact.

Tools: REMnux VM, XLMDeobfuscator, OLEDUMP with PLUGIN_BIFF, Office IDE.

Difficulty: medium.