April 15th, 2004, 02:08 PM
This is a great new program from the guys who brought us Spybot S&D. You can get it here. It's very useful when you want to take a first look at a suspected nasty (like this discussion). It's got a very nice set of features (like telling you how the file has been packed, showing you a hex dump, showing you what libraries/functions have been imported, etc). For me, the best feature is the an ability to view all the strings in the program (just like the Linux strings program).
April 15th, 2004, 02:15 PM
O! That looks fun. I'm gonna play with it when I get home.
April 15th, 2004, 04:42 PM
ok i'll use that next time. instead of useing my crapy file analyzer that was stupid enouph to open the file then analyze it