was originally published on this site
Reader Kevin asked for help with the analysis of maldoc 7eac18cab2205d94e5e5e0c43daf64cbab2e0b43cf841213c25ca34e8124739f.
Here is the analysis in one-line, as I like to do:
Similar samples have been analyzed step by step in this and this diary entry. And I also have a video.
This is a good opportunity to point to our diary archive that you can find here, Diary entries by handler can be found here.
My list is here.
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.