Threat Level: green Handler on Duty: Didier Stevens

SANS ISC: Video: Maldoc Cleaned by Anti-Virus - SANS Internet Storm Center SANS ISC InfoSec Forums

Watch ISC TV. Great for NOCs, SOCs and Living Rooms: https://isctv.sans.edu

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
Video: Maldoc Cleaned by Anti-Virus

In this video I made for diary entry "Maldoc Cleaned by Anti-Virus", I follow a slightly different proecudre than shown in the diary entry itself:

  1. I use a new version of oledump (0.0.64), with a new option (-u) for this kind of situations
  2. I use a 010 Editor template for ole files

 

Didier Stevens
Senior handler
Microsoft MVP
blog.DidierStevens.com

DidierStevens

649 Posts
ISC Handler
Mar 27th 2022

Sign Up for Free or Log In to start participating in the conversation!