Video: Quick & Dirty Shellcode Analysis - CVE-2017-11882

Published: 2022-02-27. Last Updated: 2022-02-27 11:24:21 UTC
by Didier Stevens (Version: 1)

Xavier did a dynamic analysis of a malicious document with an equation editor exploit.

In this video, I perform a quick & dirty static analysis using oledump.py, xorsearch and scdbg.

If you are more interested in all the technical details of an equation editor exploit, take a look at diary entry Dissecting a CVE-2017-11882 Exploit.

Didier Stevens
Senior handler
Microsoft MVP
blog.DidierStevens.com

Keywords:

0 comment(s)

Internet Storm Center

Video: Quick & Dirty Shellcode Analysis - CVE-2017-11882

Comments