This lab is from the CyberOps Cisco training. its intent is to fire off a macro enable word file with malicious intent.
From your Kali Machine
- start powershell empire – ./start-empire.sh
- verify that it is running — screen -ls
- exam the attack script — cat /root/Deskstop/send-phish.sh
- Execute the script — ./send-phish.sh
On the victim machine
- Launch outlook
- Navigate to the email sent
- Open the file and enable content
- Within a few minutes you will see the files start to get encrypted on the machine
