Logic Against Sneak Obfuscated Malware

Explore the world of malware analysis and code deobfuscation in this 22-minute conference talk by Thaís aka barbie Moreira Hamasaki at NorthSec. Dive into the sneaky nature of malicious code and learn how it employs packing and obfuscation techniques to evade detection and hinder analysis. Discover the power of SMT solvers as advanced analysis tools that go beyond standard debuggers, offering enhanced adaptability and automation. Gain insights into practical applications of SMT solvers in IT security, focusing on binary static analysis and code deobfuscation. Examine the theoretical limitations and practical solutions in this field. The talk covers topics such as constraints, symbolic execution, exploitation, workstation setup, garbage code, pickers, and the potential of SMT solvers as powerful tools for short searches and generic code analysis. Understand the future plans and possibilities in this crucial area of cybersecurity.

Intro
Outline
What are constraints
How SMT solvers work
Symbolic execution
Symbolic education
Symbolic model
Exploitation
Workstation
Garbage code
Pickers
Limitations
Practical
Powerful tool
Short search
Generic code
Future plans