Monthly Archives: July 2018

A look at a Word document macro using Invoke-DOSfuscation

Posted on July 28, 2018 by pcsxcetrasupport3

The sample from this one comes from Packet Wire @packet_Wire. Twitter thread here After getting the location of the Word document and downloading it. The file name was “Auditor-of-State-Notification-of-EFT-Deposit” with hash values of. Sha1: 4C7C8B1897CA22E4E477C361DAF676D471A4F4AFSha256: EBDA287F6B33A0C7A689E1D8FDE7ABC708C9DFBCA2759A56CD055868B2CC0911MD5: 35756ECC87405E42F62DEEEEF18FD43A Let’s dive into … Continue reading →

Posted in Malware, PowerShell, VBScript | Tagged Malware Analysis, PowerShell, VBScript | Comments Off

	Name on Pealing back the layers of a b…
	Week 21 – 2022… on Pealing back the layers of a b…
	Week 50 – 2021… on Peeling away the layers of obf…
	Week 47 – 2021… on Excel 4 macro code obfusc…
	Week 31 – 2021… on A deeper look at Office docume…

Monthly Archives: July 2018

A look at a Word document macro using Invoke-DOSfuscation

Recent Posts

Recent Comments

Archives

Categories

Meta