Investigation into interesting Snort signatures uncovered XSS with anti-analysis code.
UPX packed ELF file with the “p_info” section replaced with zeros.
Analysis of malicious VBA code from Emotet Maldoc containing PowerShell downloader.
Review of recent Emotet Maldoc obfuscation & evasion techniques
ISC Handler Didier Steven has created numerous tools for analyzing ole files.
The Emotet Malware Delivery Botnet is utilizing a combination of obfuscated VBA scripts, macros, and powershell instructions to evade antivirus defenses while relying on social engineering in order to successfully exploit target systems as user intervention is mandatory in the