Potential Dangers of Utilizing the 'Strings' Tool in Malware Examination

One of the first things a malware analyst does when encountering a suspicious executable file is to extract the text strings found inside it, because they can provide immediate clues about its purpose. This operation has long been considered safe, but it can actually lead to a system compromise, a security researcher found. String extraction is typically done using a Linux command-line tool called strings that