Maldoc Analysis

Last modified: 2023-04-04

Malware

Malicious Documents (.doc) are Microsoft documents contain malicious execution code.

Static Analysis

Open CyberChef
Upload the suspicious doc file on CyberChef.
Use the "Strings" function to extract strings.
If you found obfuscated strings in the results, add the "Find / Replace" function to remove extra strings.
If necessary, add the "Drop bytes" function to remove extra bytes.

Tools by HDKS

Automatic web fuzzer.

Auto reconnaissance CLI.

Hash identifier.