EXETOOLS FORUM  

Go Back   EXETOOLS FORUM > General > Source Code

Notices

Reply
 
Thread Tools Display Modes
  #1  
Old 08-31-2018, 15:37
TechLord TechLord is offline
Reverse Engineer
 
Join Date: Mar 2005
Location: 10 Steps Ahead of You
Posts: 685
Rept. Given: 389
Rept. Rcvd 243 Times in 110 Posts
Thanks Given: 766
Thanks Rcvd at 1,723 Times in 469 Posts
TechLord Reputation: 200-299 TechLord Reputation: 200-299 TechLord Reputation: 200-299
Vba2Graph - Generate call graphs from VBA code for easier analysis

Vba2Graph:

Quote:

A tool for security researchers, who waste their time analyzing malicious Office macros.
Generates a VBA call graph, with potential malicious keywords highlighted.
Allows for quick analysis of malicous macros, and easy understanding of the execution flow.


Features
  • Keyword highlighting
  • VBA Properties support
  • External function declarion support
  • Tricky macros with "_Change" execution triggers
  • Fancy color schemes!

Pros:

✓ Pretty fast

✓ Works well on most malicious macros observed in the wild

Cons:

✗ Static (dynamicaly resolved calls would not be recognized)

FULL SOURCE CODE:
Quote:
https://github.com/MalwareCantFly/Vba2Graph
Reply With Quote
The Following 5 Users Say Thank You to TechLord For This Useful Post:
Mandriva (09-01-2018), Megin (09-03-2018), Ragnarok (08-31-2018), ScofiledHex (10-30-2018), tonyweb (10-20-2018)
Reply

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is On



All times are GMT +8. The time now is 09:25.


ICP05004977
Always Your Best Friend: Aaron, JMI, ahmadmansoor, ZeNiX