Maldoc Analysis
Last modified: 2023-04-04
Malware
Malicious Documents (.doc) are Microsoft documents contain malicious execution code.
Static Analysis
- Open CyberChef
- Upload the suspicious doc file on CyberChef.
- Use the "Strings" function to extract strings.
- If you found obfuscated strings in the results, add the "Find / Replace" function to remove extra strings.
- If necessary, add the "Drop bytes" function to remove extra bytes.