Guys from Open Analysis have published a video of walking through manually decoding a malicious vbs script that was submitted to them by a viewer. These scripts were being delivered via phishing campaigns and were bundled within encrypted word (docx) documents.

Tools used:

oletools –
oledump –
psparser –
VBCode indenter –
Windows RE & Internals Lookup –
malware-jail –

Load More Related Articles
Load More In Webinars

Leave a Reply

Your email address will not be published. Required fields are marked *