Главная
Study mode:
on
1
Intro
2
You can find nuggets of gold
3
Our initial goals
4
Size does matter
5
Results
6
Day 1 Analysis
7
Signed binaries
8
Microsoft King
9
APT Wonders
10
Android Keys
11
PC
12
Key
13
issuer
14
next steps
15
better grouping
16
who is active
17
why we dont use Cuckoo
Description:
Explore advanced malware analysis techniques in this 44-minute conference talk from DerbyCon 3.0. Delve into the process of finding valuable insights within large datasets of malware samples. Learn about the initial goals of the research, the importance of sample size, and the results obtained from day one analysis. Discover insights on signed binaries, Microsoft's role, APT wonders, and Android keys. Examine the PCKey issuer and discuss next steps for improving malware analysis, including better grouping methods and identifying active threats. Understand why Cuckoo Sandbox is not utilized in this approach. Gain valuable knowledge to enhance your ability to quantify and analyze advanced malware in the ever-evolving cybersecurity landscape.

Finding the Signal in the Noise - Quantifying Advanced Malware

Add to list