How do you analyze a potentially malicious document or script that utilizes obfuscation to evade traditional signature-based detection?