I wrote a blog post “Quickpost: Analysis of PDF/ActiveMime Polyglot Maldocs” on how to analyse PDF/ActiveMime polyglot malicious document files and also developed a YARA rule to detect them.
Article Link: https://isc.sans.edu/diary/rss/30186
I wrote a blog post “Quickpost: Analysis of PDF/ActiveMime Polyglot Maldocs” on how to analyse PDF/ActiveMime polyglot malicious document files and also developed a YARA rule to detect them.
Article Link: https://isc.sans.edu/diary/rss/30186