AutoHotKey Malware – The New AutoIT - DefCamp - 2018
Offered By: DefCamp via YouTube
Course Description
Overview
Explore the world of AutoHotKey malware in this DefCamp 2018 conference talk. Delve into the evolution of malicious scripting, comparing AutoHotKey to AutoIT and examining its rising popularity among cybercriminals. Learn about unpacking techniques, encoding methods, and exfiltration strategies employed in AutoHotKey-based attacks. Discover how these malicious scripts operate, including clipboard manipulation and Steam account theft. Analyze detection rates, investigate simple malware examples, and understand the attacker's operational methods. Gain insights into effective malware concealment tactics and explore the transition from Ducky scripts to AutoHotKey. Discuss countermeasures, including public exposure of malicious actors and implementation of security rules. Conclude with a Q&A session addressing AutoHotKey's position in the current threat landscape.
Syllabus
Intro
Welcome
Who am I
Selfpromotion
CounterStrike
AutoHotKey Malware
AutoHotKey Unpacking
Encoding
How it works
Exfiltration
Detection Rates
Simple Malware
ClipBanker
Steam
Stealing Steam
Who is this guy
Best place to stall malware
His Operation
File Sharing
Conclusion
Questions
AutoHotKey vs AutoIT
Back in the day
Ducky script to AutoHotKey
Gimp your tool
Public shaming
Rules
DNX Filter
Detection Rate
Taught by
DefCamp
Related Courses
Malicious Software and its Underground Economy: Two Sides to Every StoryUniversity of London International Programmes via Coursera Palo Alto Networks Cybersecurity Essentials II
Palo Alto Networks via Coursera Introducción al Análisis del Malware en Windows
National Technological University – Buenos Aires Regional Faculty via Miríadax Android Malware Analysis - From Zero to Hero
Udemy How to Create and Embed Malware (2-in-1 Course)
Udemy