Sí, mirad, he encontrado esto:
http://www.infovis.info/index.php?words=exhibitingPor ejemplo en la segunda noticia, que se titula:
"Graphing Malware - Netsky.AD vs Buchon"
Dice:
They use a series of tools for reverse engineering malware such as: IDA - the Interactive DisAssembler, IDAPython - Python extension for IDA, and pydot - Python interface to Graphviz utilities. IDAPython and pydot were developed by the authors and released as open source. The resulting graphs are done by exploring the code of a malware sample looking for all the functions and the relationships between them (who calls who). This information, together with text references, are then exported using pydot into a format that Graphviz utilities can read.Pero nunca lo he utilizado y no sé cómo va. Pero parece que se hace con esas herramientas. Bueno si a alguien le interesa el tema y le sale algo, pues que ponga cómo lo hizo, los pasos :-) Bueno un saludo a todos.