Didier Stevens

Monday 29 August 2016

Update: rtfdump Version 0.0.4

Filed under: maldoc,My Software — Didier Stevens @ 0:00

This version has a user-friendlier handling of files that are not rtf:

20160812-131850

Last months, I’ve seen many maldocs that disguise .doc files as .rtf.

rtfdump_V0_0_4.zip (https)
MD5: C384FD5356DA4E2129E44903BA20966A
SHA256: 0B73AB16577BDB1DC0B1431013E28893004DD563DD4C4D00BA1D20B1DBAED917

6 Comments »

  1. […] Didier Stevens updated his Python script rtfdump to version 0.0.4 to improve dealing with files that are not RTF. Update: rtfdump Version 0.0.4  […]

    Pingback by Week 35 – 2016 – This Week In 4n6 — Tuesday 6 September 2016 @ 17:51

  2. […] Update: rtfdump Version 0.0.4 […]

    Pingback by Overview of Content Published In August | Didier Stevens — Sunday 18 September 2016 @ 18:36

  3. […] rtfdump.py […]

    Pingback by rtfdump: intro | Didier Stevens Videos — Friday 7 October 2016 @ 11:22

  4. […] produced 3 videos to show you how to use my rtfdump.py tool to analyze (malicious) RTF […]

    Pingback by rtfdump Videos | Didier Stevens — Friday 7 October 2016 @ 11:26

  5. […] Tool: rtfdump.py […]

    Pingback by rtfdump: MS12-027 Maldoc | Didier Stevens Videos — Friday 7 October 2016 @ 11:32

  6. […] Tool: rtfdump.py […]

    Pingback by rtfdump: MS10-087 Maldoc | Didier Stevens Videos — Friday 7 October 2016 @ 11:37


RSS feed for comments on this post. TrackBack URI

Leave a Reply (comments are moderated)

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

Blog at WordPress.com.

%d bloggers like this: