Malicious documents like this RevengeRAT ppam file found on MalwareBazaar contain VBA code that you can analyze with oledump.py.
Article Link: https://isc.sans.edu/diary/rss/29818
Malicious documents like this RevengeRAT ppam file found on MalwareBazaar contain VBA code that you can analyze with oledump.py.
Article Link: https://isc.sans.edu/diary/rss/29818