Malicious Document delivering Dridex — analysis and emulation (part 2)

Harold Ogden
Jul 27 · 4 min read

VBA Building Blocks

Example: get_filler(min, max)

Compare and Contrast

Can you spot the Dridex?

A quick glance at the original Dridex maldoc

Time to build!

Welcome to a place where words matter. On Medium, smart voices and original ideas take center stage - with no ads in sight. Watch
Follow all the topics you care about, and we’ll deliver the best stories for you to your homepage and inbox. Explore
Get unlimited access to the best stories on Medium — and support writers while you’re at it. Just $5/month. Upgrade