Mar 17, 2026 • Didier Stevens
Update: oledump.py Version 0.0.85
The article announces version 0.0.85 of the open-source utility oledump.py. The update specifically addresses issues regarding newlines within certain plugins...
Executive Summary
The article announces version 0.0.85 of the open-source utility oledump.py. The update specifically addresses issues regarding newlines within certain plugins associated with the tool. Hashes (MD5 and SHA256) are provided for verification of the downloaded zip file. This release does not indicate a new threat campaign, vulnerability, or malware activity. Instead, it represents maintenance work on a forensic utility commonly used by analysts to inspect OLE files, often found in malicious Office documents. Security teams utilizing this tool for threat hunting or incident response should update to ensure plugin stability. Developers should verify integrity using the provided cryptographic hashes before deployment in analysis environments. No immediate action is required regarding threat mitigation, as this is not a security advisory concerning an exploit or infection.
Summary
Fixing newlines in some plugins. oledump_V0_0_85.zip (http)MD5: D972CE411B395EF77DBCE9A63059E8C1SHA256: 721C095F3126745A42720316A0B3AC1BCCB9DCDBBA9FF59F5FE1F70F8BA3A1AB
Published Analysis
The article announces version 0.0.85 of the open-source utility oledump.py. The update specifically addresses issues regarding newlines within certain plugins associated with the tool. Hashes (MD5 and SHA256) are provided for verification of the downloaded zip file. This release does not indicate a new threat campaign, vulnerability, or malware activity. Instead, it represents maintenance work on a forensic utility commonly used by analysts to inspect OLE files, often found in malicious Office documents. Security teams utilizing this tool for threat hunting or incident response should update to ensure plugin stability. Developers should verify integrity using the provided cryptographic hashes before deployment in analysis environments. No immediate action is required regarding threat mitigation, as this is not a security advisory concerning an exploit or infection. Fixing newlines in some plugins. oledump_V0_0_85.zip (http)MD5: D972CE411B395EF77DBCE9A63059E8C1SHA256: 721C095F3126745A42720316A0B3AC1BCCB9DCDBBA9FF59F5FE1F70F8BA3A1AB Fixing newlines in some plugins. oledump_V0_0_85.zip ( http ) MD5: D972CE411B395EF77DBCE9A63059E8C1 SHA256: 721C095F3126745A42720316A0B3AC1BCCB9DCDBBA9FF59F5FE1F70F8BA3A1AB