I've done it
Thanks @luskin for tips and @0xdf for challenge
I am this close to solving it. I have deobfuscated the H** and got the payload. I don't know what to do with the payload though
I found an article that help me a lot on this challenge. I hope this is not a spoiler:
i stuck in here few months..
i extrack .vba and .hta file but not found any useful..
this challenge have to reversing?
please help me.
Piouf. Solved ! Not an easy one, but a fun one . Thanks @0xdf for this
If anyone is still working on this one, does anyone have a tip for the last step? I have the deobfuscated payload from the h** file and was able to get valid shellcode from it, but I can't get it to execute correctly (unless that's not what is needed).
I found shellcode, but i don't know good tools to work with it. May be anyone can give me an advice?
Feel free to ask a nudge
Click here to create an account.