Threat Level: green Handler on Duty: Didier Stevens

SANS ISC: Internet Storm Center - SANS Internet Storm Center Internet Storm Center


Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!

Latest Diaries

Video: Analyzing DAA Files

Published: 2019-08-18
Last Updated: 2019-08-18 19:30:46 UTC
by Didier Stevens (Version: 1)
0 comment(s)

This is a video to illustrate the analysis of DAA files (Direct Access Archives), discussed in diary entries "Malicious .DAA Attachments" and "The DAA File Format".

As can be expected, these DAA files, sent as email attachment, contain a malicious Windows executable (PE file).

Didier Stevens
Senior handler
Microsoft MVP
blog.DidierStevens.com DidierStevensLabs.com

Keywords: daa iso malware
0 comment(s)

If you have more information or corrections regarding our diary, please share.

Recent Diaries

The DAA File Format
Aug 16th 2019
2 days ago by DidierStevens (0 comments)

Analysis of a Spearphishing Maldoc
Aug 15th 2019
3 days ago by DidierStevens (0 comments)

Recent example of MedusaHTTP malware
Aug 14th 2019
5 days ago by Brad (0 comments)

August 2019 Microsoft Patch Tuesday
Aug 13th 2019
5 days ago by Johannes (0 comments)

Malicious .DAA Attachments
Aug 12th 2019
6 days ago by DidierStevens (0 comments)

View All Diaries →

Latest Discussions

"Network Mom ACL Analyzer" finds errors, matches, and duplicates in Cisco ACLs
created Jul 29th 2019
2 weeks ago by DarrellRoot (0 replies)

Worth protecting my website?
created Jun 28th 2019
1 month ago by Anonymous (3 replies)

Email Encryption Providers
created Jun 27th 2019
1 month ago by Anonymous (2 replies)

Entrust resolving to CNAME that is an invalid CDN host
created Jun 10th 2019
2 months ago by jauntysankey (0 replies)

Outlook Forms (forms.outlook.com)
created May 31st 2019
2 months ago by MasterYoshi (0 replies)

View All Forums →

Latest News

Top Diaries

Wide-scale Petya variant ransomware attack noted
Jun 27th 2017
2 years ago by Brad (0 comments)

Using a Raspberry Pi honeypot to contribute data to DShield/ISC
Aug 3rd 2017
2 years ago by Johannes (0 comments)

Second Google Chrome Extension Banker Malware in Two Weeks
Aug 29th 2017
1 year ago by Renato (0 comments)

Detection Lab: Visibility & Introspection for Defenders
Dec 15th 2017
1 year ago by Russ McRee (0 comments)

Maldoc with auto-updated link
Aug 17th 2017
2 years ago by Xme (0 comments)