Sample: 2d0d0094b25f0116dbdfa85a2a3b69d2
Tools: numbers-to-string.py
ISC Diary entry: Video: De-DOSfuscation Example
malware
Dissecting a CVE-2017-11882 Exploit
Sample: 1f27e4d035c8ec71264c9fb1c8915f0b
Tools: rtfdump.py, oledump.py, format-bytes.py, scdbg.exe
ISC Diary entry: Dissecting a CVE-2017-11882 Exploit
CyberChef: BASE64/XOR Recipe
Sample: 7ea8e50ce884dab89a13803ccebea26e
Tools: CyberChef
ISC Diary entry: CyberChef: BASE64/XOR Recipe
When DOSfuscation Helps…
Sample: dfff3a02e6e6a4d079c12f83dcc2f7a5
Tools: re-search.py, sets.py, python-per-line.py
ISC Diary entry: When DOSfuscation Helps…
Maldoc with DOSfuscation: example 2
Tools: oledump.py, re-research.py, sets.py and numbers-to-string.py.
ISC diary entry: Dealing with numeric obfuscation in malicious scripts
Sample: a564cd735132eccde401d6978651b66d
Maldoc Analysis & Linux Tools
Tools: oledump.py.
ISC diary entry: Maldoc analysis with standard Linux tools
Sample: 2f87105fea2d4bae72ebc00efc6ede56
Dealing With Numeric Obfuscation
Tools: oledump.py, re-research.py, sets.py and numbers-to-string.py.
ISC diary entry: Dealing with numeric obfuscation in malicious scripts
Sample: f25a16298240f2faefee654478050a62
