Freeze Drying for Capturing Environment-Sensitive Malware Alive
Offered By: Black Hat via YouTube
Course Description
Overview
Explore innovative techniques for capturing and analyzing environment-sensitive malware in this Black Hat conference talk. Learn about the "freeze drying" method that enables live process migration of sophisticated malware like Citadel and ZeuS/GameOver, which typically employ anti-analysis techniques. Discover how the Sweetspot malware capture system uses process live migration and system call proxies to mimic infected host environments, allowing for in-process malware capture and analysis. Gain insights into how this technology can serve as a honeypot, providing dummy data to malware requesting sensitive information. Witness a live demonstration of freeze-drying and instant dynamic analysis of real malware samples during this 41-minute presentation by Yosuke Chubachi.
Syllabus
Freeze Drying for Capturing Environment-Sensitive Malware Alive
Taught by
Black Hat
Related Courses
Attack on Titan M, Reloaded - Vulnerability Research on a Modern Security ChipBlack Hat via YouTube Attacks From a New Front Door in 4G & 5G Mobile Networks
Black Hat via YouTube AAD Joined Machines - The New Lateral Movement
Black Hat via YouTube Better Privacy Through Offense - How to Build a Privacy Red Team
Black Hat via YouTube Whip the Whisperer - Simulating Side Channel Leakage
Black Hat via YouTube