Thursday, September 13, 2012

Analyzing Malicious RTF Files Using OfficeMalScanner's RTFScan

For the uninitiated, RTF stands for Rich Text Format which are encoded so that they can be read across a variety of platforms. It was developed by Microsoft in 1987 for us with its first version of Word to provide portability between the application itself and other text editors or word processing programs.

This post describes the use of RTF for the malicious encoding used by spammers and other system attackers.


Thanks to Lenny Zeltser and ISC Diary
ISC Diary | Analyzing Malicious RTF Files Using OfficeMalScanner's RTFScan
Show Comments: OR