close menu
Shop Our Merch Report A Breach 1-877-550-4728

In this video, Senior Incident Response & Research Consultant Scott Nusbaum demonstrates a method to extract and deobfuscate code from a malicious document. Upon rendering the code readable, Nusbaum works to gain an understanding of the goals the malware was attempting to accomplish and the processes by which it undertook that effort.

This video is the first part of a series showcasing the approaches and techniques employed by malware analysts today. Future videos will cover PowerShell deobfuscation, analysis of AutoIt malware, and more, with viewer-suggested topics welcome.

  • Search the blog

  • Search by Author

  • Browse by date

  • Browse by Category

  • Clear Form

More Like This

Critical Outlook Vulnerability: In-Depth Technical Analysis and Recommendations (CVE-2023-23397)
March 17, 2023
By Olivia Cate, Justin Elze, Nick Gilberti, Leo Bastidas, Robert R. Lee Jr., Andrew Schwartz, Carlos Perez and Oddvar Moe in Incident Response, Incident Response & Forensics, Purple Team Adversarial Detection & Countermeasures, Research, Vulnerability Assessment
Red vs. Blue: Kerberos Ticket Times, Checksums, and You!
March 14, 2023
By Andrew Schwartz in Incident Response, Incident Response & Forensics, Penetration Testing, Purple Team Adversarial Detection & Countermeasures, Threat Hunting
Getting Analysis Practice from Windows Event Log Sample Attacks
March 7, 2023
By Thomas Millar in Incident Response, Incident Response & Forensics