Embedded Content in OOXML Documents
released on 2021-09-14 @ 07:36:45 AM
On FireEye Advanced Practices, they are always looking for new ways to find malicious activity and track adversaries over time. Today they’re sharing a technique we use to detect and cluster Microsoft Office documents - specifically those in the Office Open XML (OOXML) file format.