Главная
Study mode:
on
1
Introduction
2
Presentation Overview
3
Background
4
Discord and Slack
5
Malware Distribution
6
Malware Delivery
7
Slack File Access
8
VirusTotal
9
Volume Increase
10
Malware Fan Campaigns
11
Email Example
12
Email Source Code
13
Component Retrieval
14
Stage Retrieval
15
Persistence
16
Async Rap
17
PDF
18
Discord CD
19
Command and Control
20
Webhooks
21
Discord Webhook
22
Slack Webhook
23
Initial Beacon
24
Portmap
25
Discord Send Webhook
26
Command Output
27
Ransomware
28
Access Tokens
29
Main Crack
30
Growtopia
31
Slack Cookies
32
Slack Pirate
33
Business Protections
34
Cisco Talos
35
Audience Questions
36
CPEC Use
Description:
Explore a conference talk from OISF 2021 examining the exploitation of collaboration platforms like Discord and Slack in malware campaigns. Delve into the methods used for malware distribution, delivery, and command and control through these platforms. Learn about specific malware campaigns, including email examples, component retrieval, and persistence techniques. Investigate the use of webhooks, access tokens, and other platform-specific features for malicious purposes. Gain insights into business protections and Cisco Talos' findings on these threats. Conclude with audience questions and a discussion on CPEC use in this context.

Chats, Cheats and Cracks - Abuse of Collaboration Platforms in Malware Campaigns

Add to list
#Conference Talks #Information Security (InfoSec) #Cybersecurity #Malware Analysis #Business #Business Software #Slack #Threat Intelligence #Programming #Web Development #Webhooks
1 of 36

Introduction