Xavier did a dynamic analysis of a malicious document with an equation editor exploit. In this video, I perform a quick & dirty static analysis using oledump.py, xorsearch and scdbg. If you are more interested in all the technical details of an equation editor exploit, take a look at diary entry Dissecting a CVE-2017-11882 Exploit.
Didier Stevens |
DidierStevens 652 Posts ISC Handler Feb 27th 2022 |
Thread locked Subscribe |
Feb 27th 2022 4 months ago |
Sign Up for Free or Log In to start participating in the conversation!