SideWinder Uncoils to Strike
Offered By: Black Hat via YouTube
Course Description
Overview
Delve into an in-depth analysis of the SideWinder threat actor, also known as RattleSnake and T-APT-04, in this 41-minute Black Hat conference talk. Explore the aggressive tactics employed by this APT group, which has been responsible for over a thousand attacks since April 2020. Examine their extensive infrastructure, including hundreds of domains and subdomains used for Download and Command and Control Servers. Follow the infection chain from delivery through various stages of obfuscation and payload deployment. Gain insights into the investigation process and learn effective mitigation strategies to protect against this formidable cyber threat. Presented by Noushin Shabab, this comprehensive briefing provides valuable information for cybersecurity professionals and researchers looking to understand and defend against sophisticated APT actors.
Syllabus
Intro
Sidewinder threat actor
Infection chain
Delivery
First Stage JS obfuscation - 2022
NET downloader
NET Installer
Final Backdoor
Infrastructure
Investigation
Mitigation
Conclusion
Taught by
Black Hat
Related Courses
Computer SecurityStanford University via Coursera Cryptography II
Stanford University via Coursera Malicious Software and its Underground Economy: Two Sides to Every Story
University of London International Programmes via Coursera Building an Information Risk Management Toolkit
University of Washington via Coursera Introduction to Cybersecurity
National Cybersecurity Institute at Excelsior College via Canvas Network