← Back to BrewedIntel
otherlowNone

Mar 17, 2026 • Didier Stevens

Update: oledump.py Version 0.0.85

The article announces version 0.0.85 of the open-source utility oledump.py. The update specifically addresses issues regarding newlines within certain plugins...

Source
Didier Stevens
Category
other
Severity
low

Executive Summary

The article announces version 0.0.85 of the open-source utility oledump.py. The update specifically addresses issues regarding newlines within certain plugins associated with the tool. Hashes (MD5 and SHA256) are provided for verification of the downloaded zip file. This release does not indicate a new threat campaign, vulnerability, or malware activity. Instead, it represents maintenance work on a forensic utility commonly used by analysts to inspect OLE files, often found in malicious Office documents. Security teams utilizing this tool for threat hunting or incident response should update to ensure plugin stability. Developers should verify integrity using the provided cryptographic hashes before deployment in analysis environments. No immediate action is required regarding threat mitigation, as this is not a security advisory concerning an exploit or infection.

Summary

Fixing newlines in some plugins. oledump_V0_0_85.zip (http)MD5: D972CE411B395EF77DBCE9A63059E8C1SHA256: 721C095F3126745A42720316A0B3AC1BCCB9DCDBBA9FF59F5FE1F70F8BA3A1AB

Published Analysis

The article announces version 0.0.85 of the open-source utility oledump.py. The update specifically addresses issues regarding newlines within certain plugins associated with the tool. Hashes (MD5 and SHA256) are provided for verification of the downloaded zip file. This release does not indicate a new threat campaign, vulnerability, or malware activity. Instead, it represents maintenance work on a forensic utility commonly used by analysts to inspect OLE files, often found in malicious Office documents. Security teams utilizing this tool for threat hunting or incident response should update to ensure plugin stability. Developers should verify integrity using the provided cryptographic hashes before deployment in analysis environments. No immediate action is required regarding threat mitigation, as this is not a security advisory concerning an exploit or infection. Fixing newlines in some plugins. oledump_V0_0_85.zip (http)MD5: D972CE411B395EF77DBCE9A63059E8C1SHA256: 721C095F3126745A42720316A0B3AC1BCCB9DCDBBA9FF59F5FE1F70F8BA3A1AB Fixing newlines in some plugins. oledump_V0_0_85.zip ( http ) MD5: D972CE411B395EF77DBCE9A63059E8C1 SHA256: 721C095F3126745A42720316A0B3AC1BCCB9DCDBBA9FF59F5FE1F70F8BA3A1AB

Read original source