Malicious Office Files Analysis – pyOLEScanner and Cryptoana - KernelMode.info

Malicious Office Files Analysis – pyOLEScanner and Cryptoana

4 posts

4 posts

Malicious Office Files Analysis – pyOLEScanner and Cryptoana

#2041 by Evilcry
Wed Aug 18, 2010 4:43 am

Hi,

Some hour ago I've written a blog post on Malware Analysis of Infected OLE2 (doc/ppt/xls) Files, including also pyOLEScanner,
a python based script that detects malicious OLE2 files.

Due to the len. of the post I'll not dump it here, but report relative links.

BlogPost
http://evilcodecave.blogspot.com/2010/0 ... lysis.html

pyOLEScanner
http://evilcry.netsons.org/other/pyOLEScanner.py

Have a nice Read :)
Evilcry

Username

Evilcry

Posts

135

Joined

Tue Apr 20, 2010 6:10 pm

Re: Malicious Office Files Analysis – pyOLEScanner and Crypt

#2125 by Evilcry
Fri Aug 20, 2010 5:06 pm

Second episode :) http://evilcodecave.blogspot.com/2010/0 ... ew-of.html

Username

Evilcry

Posts

135

Joined

Tue Apr 20, 2010 6:10 pm

Re: Malicious Office Files Analysis – pyOLEScanner and Crypt

#2130 by EP_X0FF
Fri Aug 20, 2010 5:27 pm

Thanks for sharing ;)

Ring0 - the source of inspiration

Username

EP_X0FF

Rank

Global Moderator

Posts

4947

Joined

Sun Mar 07, 2010 5:35 am

Location

Russian Federation

Contact

Re: Malicious Office Files Analysis – pyOLEScanner and Crypt

#2131 by Evilcry
Fri Aug 20, 2010 5:29 pm

Thank you EP_X0FF ! :D

Username

Evilcry

Posts

135

Joined

Tue Apr 20, 2010 6:10 pm

Page 1 of 1
4 posts

Return to “Malware”

Display:

Sort by:

Sort by:

Jump to: