YoVDO

SideWinder Uncoils to Strike

Offered By: Black Hat via YouTube

Tags

Black Hat Courses Cybersecurity Courses Threat Intelligence Courses Incident Response Courses Advanced Persistent Threats Courses

Course Description

Overview

Delve into an in-depth analysis of the SideWinder threat actor, also known as RattleSnake and T-APT-04, in this 41-minute Black Hat conference talk. Explore the aggressive tactics employed by this APT group, which has been responsible for over a thousand attacks since April 2020. Examine their extensive infrastructure, including hundreds of domains and subdomains used for Download and Command and Control Servers. Follow the infection chain from delivery through various stages of obfuscation and payload deployment. Gain insights into the investigation process and learn effective mitigation strategies to protect against this formidable cyber threat. Presented by Noushin Shabab, this comprehensive briefing provides valuable information for cybersecurity professionals and researchers looking to understand and defend against sophisticated APT actors.

Syllabus

Intro
Sidewinder threat actor
Infection chain
Delivery
First Stage JS obfuscation - 2022
NET downloader
NET Installer
Final Backdoor
Infrastructure
Investigation
Mitigation
Conclusion


Taught by

Black Hat

Related Courses

Advanced Threat Hunting and Incident Response
LearnQuest via Coursera Automated Cyber Security Incident Response
EDUCBA via Coursera Check Point Jump Start: Harmony Mobile
Checkpoint via Coursera Check Point Jump Start: Harmony Mobile
Checkpoint via edX Copilot for Cybersecurity
Microsoft via Coursera