Threat Level: green Handler on Duty: Didier Stevens

SANS ISC: Video: Analyzing DAA Files SANS ISC InfoSec Forums

Watch ISC TV. Great for NOCs, SOCs and Living Rooms: https://isctv.sans.edu

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
Video: Analyzing DAA Files

This is a video to illustrate the analysis of DAA files (Direct Access Archives), discussed in diary entries "Malicious .DAA Attachments" and "The DAA File Format".

As can be expected, these DAA files, sent as email attachment, contain a malicious Windows executable (PE file).

Didier Stevens
Senior handler
Microsoft MVP
blog.DidierStevens.com DidierStevensLabs.com

DidierStevens

470 Posts
ISC Handler
Aug 18th 2019

Sign Up for Free or Log In to start participating in the conversation!