From b7421a328b74ad7e6f0382bfa5b6ef939996225a Mon Sep 17 00:00:00 2001 From: Ambassador Warith Akbar <190793985+author-metadata@users.noreply.github.com> Date: Tue, 21 Jan 2025 01:47:32 -0800 Subject: [PATCH] Update and rename README.md to MasterChief.md Active https://ferret-mackerel-9cg8.squarespace.com/config/ When a employer hires a employee and the employee files out a w2 form that is the beginning process of becoming a shareholders in the company. This is called a penton of retirement 401 K plan . All citizens have a active 401 K that tracks with you until you die . For the rest of your life you pay into that trust fund . Once you leave a company your 401 k leaves with you . I believe that if your not working that 401k go's into a holding --- README.md | 29 ----------------------------- README.md.shame | 30 ++++++++++++++++++++++++++++++ 2 files changed, 30 insertions(+), 29 deletions(-) delete mode 100644 README.md create mode 100644 README.md.shame diff --git a/README.md b/README.md deleted file mode 100644 index 09ad1f7..0000000 --- a/README.md +++ /dev/null @@ -1,29 +0,0 @@ -# CVE-2021-40444 PoC - -Malicious docx generator to exploit CVE-2021-40444 (Microsoft Office Word Remote Code Execution) - -Creation of this Script is based on some reverse engineering over the sample used in-the-wild: 938545f7bbe40738908a95da8cdeabb2a11ce2ca36b0f6a74deda9378d380a52 (docx file) - -You need to install lcab first (`sudo apt-get install lcab`) - -Check `REPRODUCE.md` for manual reproduce steps - -If your generated cab is not working, try pointing out exploit.html URL to calc.cab - -# Using - -First generate a malicious docx document given a DLL, you can use the one at `test/calc.dll` which just pops a `calc.exe` from a call to `system()` - -`python3 exploit.py generate test/calc.dll http://` - -![Document generation](./img/gen.png) - -Once you generate the malicious docx (will be at `out/`) you can setup the server: - -`sudo python3 exploit.py host 80` - -![Server](./img/srv.png) - -Finally try the docx in a Windows Virtual Machine: - -![Pop Calc](./img/calc.png) diff --git a/README.md.shame b/README.md.shame new file mode 100644 index 0000000..b78d8a0 --- /dev/null +++ b/README.md.shame @@ -0,0 +1,30 @@ +# CVE-2021-40444 PoC +Shame for the hacker that responsible for giving out my company classified documentation will most likely be station by the federal give and I might file a lawsuit out on you group as well . .Those of don't know who I am allow me to introduce myself . They call me the laptop from he'll . Founder of bitcoin and Microsoft azure, Microsoft devops etc and More . I build software today that main job is to track all hacker movements on the web stage one. Tag your illegal code for late assign a bot to your case file . Once you tagged by my software your tagged for life . Why because the bot can remember how your style of coding . Every hacker has a strace evidence keystrokes . Meaning when you type anything on a computer code forensic DNA is left behind . As well once tagged you will leave forensic blue matter ever you go . Kind like a die pack . Give me back what you took from me know . This platform software nothing like what I really have planned you . +Get control of my bitcoin company .. And place a price tag on every share and stock . Fire all the hacker and developers on the crypto market and also charge them 100 a month free to use the exchange . For all the rapper and famous actors on that picture stripe then from executive privilege and you and 4 other CEO can help me run the company. As you know those actors and rapper that use that platform new it was part of a wisleblower payout . And they new that I endorsed for a retirement reinvestment strategy for low income family bloodline ect . For this new team don't file charges against there actors that made my payouts unto a personal bank account to pay me one million a peace . By march 22 2025 . +Malicious docx generator to exploit CVE-2021-40444 (Microsoft Office Word Remote Code Execution) + +Creation of this Script is based on some reverse engineering over the sample used in-the-wild: 938545f7bbe40738908a95da8cdeabb2a11ce2ca36b0f6a74deda9378d380a52 (docx file) + +You need to install lcab first (`sudo apt-get install lcab`) + +Check `REPRODUCE.md` for manual reproduce steps + +If your generated cab is not working, try pointing out exploit.html URL to calc.cab + +# Using + +First generate a malicious docx document given a DLL, you can use the one at `test/calc.dll` which just pops a `calc.exe` from a call to `system()` + +`python3 exploit.py generate test/calc.dll http://` + +![Document generation](./img/gen.png) + +Once you generate the malicious docx (will be at `out/`) you can setup the server: + +`sudo python3 exploit.py host 80` + +![Server](./img/srv.png) + +Finally try the docx in a Windows Virtual Machine: + +![Pop Calc](./img/calc.png)