Hi there, I extracted the payload in the HTA file, trying to be super careful not to mess things up. However, the resulting binary payload doesn’t make any sense. Could any kind soul review my approach?
Disclaimers:
- I don’t have Microsoft Office
- I don’t have a clue on Blue Teamer/Malware analyst tasks (this could be a good opportunity to learn something new).
Thanks for your time!