Skip to content

Didier Stevens Videos

  • Home
  • About
  • count.py

Didier Stevens Videos RSS

  • RSS - Posts

Recent Posts

  • Encrypted Sextortion PDFs
  • Analyzing DAA Files
  • Analyzing Compressed PowerShell Scripts
  • nmap Service Detection Customization
  • Analysis of PDFs Created with OpenOffice/LibreOffice

Recent Comments

Overview of Content… on Analyzing Compressed PowerShel…
Overview of Content… on nmap Service Detection Cu…
Overview of Content… on Analysis of PDFs Created with…
Overview of Content… on Maldoc Analysis: Excel 4.0…
Overview of Content… on Maldoc Analysis: Excel 4.0…

Archives

  • September 2019
  • July 2019
  • May 2019
  • March 2019
  • February 2019
  • January 2019
  • December 2018
  • September 2018
  • August 2018
  • July 2018
  • June 2018
  • December 2017
  • August 2017
  • July 2017
  • June 2017
  • May 2017
  • April 2017
  • March 2017
  • December 2016
  • November 2016
  • October 2016
  • July 2016
  • May 2016
  • December 2015
  • November 2015
  • October 2015
  • September 2015
  • August 2015
  • July 2015
  • June 2015
  • May 2015
  • April 2015
  • March 2015
  • February 2015
  • January 2015
  • December 2014
  • November 2014
  • October 2014
  • September 2014
  • August 2014
  • July 2014

Categories

  • howto
  • malware
  • my software
  • Uncategorized
  • video

Meta

  • Register
  • Log in
  • Entries feed
  • Comments feed
  • WordPress.com

my software

Encrypted Sextortion PDFs

Tools: pdfid.py and pdf-parser.py, QPDF and Poppler.

ISC diary entries: “Encrypted Sextortion PDFs”

Sample: 294592cd85ddf80ad1a092f955f1ae25

Comment
September 22, 2019 Didier Stevens

Analyzing DAA Files

Tools: search-for-compression.py

ISC diary entries: “Malicious .DAA Attachments” and “The DAA File Format”

Sample: 6e8947a82c97c26728dc590ed797ee23

Comment
September 11, 2019 Didier Stevens

Analyzing Compressed PowerShell Scripts

Tools:  oledump.py, base64dump.py, translate.py

ISC diary entry: Analyzing Compressed PowerShell Scripts

Sample: 1d5794e6b276db06f6f70d5fae6d718e

1 Comment
July 28, 2019 Didier Stevens

Analysis of PDFs Created with OpenOffice/LibreOffice

Tools: pdfid.py, pdf-parser.py

ISC diary entry: Analysis of PDFs Created with OpenOffice/LibreOffice

1 Comment
May 19, 2019 Didier Stevens

Maldoc Analysis: Excel 4.0 Macro

Sample: 7df15be35bd8fd1a98adc24e6be7bfcd..

Tools: oledump.py

ISC Diary entry: Maldoc: Excel 4.0 Macro

2 Comments
March 31, 2019 Didier Stevens

Maldoc: Excel 4.0 Macro

Sample: 007de2c71861a3e1e6d70f7fe8f4ce9b.

Tools: oledump.py

Blog post: Maldoc: Excel 4.0 Macro

1 Comment
March 15, 2019March 15, 2019 Didier Stevens

Analyzing a Phishing PDF with /ObjStm

Sample: 55c336693e66b5d6a799b6b4f8eb5f1a.

Tools: pdfid.py, pdf-parser.py

Blog post: Analyzing a Phishing PDF with /ObjStm

1 Comment
March 11, 2019 Didier Stevens

Posts navigation

← Older posts
Blog at WordPress.com.
Didier Stevens Videos
Blog at WordPress.com.
Cancel