2024 Session
Fiesta 5
1:30 pm - 2:15 pm, Monday, September 23
Malware Analysis for Incident Responders
About

The goal of this presentation is to provide analysts techniques to discover Indicators of Compromise (IOCs) in malware to help their investigation. The presentation will be broken out in the following sections:
- Using FLOSS and Strings to find IOCs
- Stacked Strings to avoid analysis
- Finding stacked strings with FLOSS
- Evading FLOSS and Strings with Hardcoded Assembly Variables
- Using python to find Network Indicators
- PDF Analysis
- One Note Analysis
- Introduction to Yara
- Using these Indicators in further Threat Hunting

Learning Objectives:

  • Perform basic malware analysis in a safe environment.
  • Effectively use Indicators of Compromise (IOCs) found in malware to aid Threat Hunting.
  • Write basic python scripts to discover network indicators.
Get in touch
Get in touch
Customer Service
For any and all inquiries please click the button below
Speaking Opportunities

Tim Garon
Director, Event Content and Strategy

InfoSec World
Stay Informed
Join our mailing list for the latest news on InfoSec World 2024.