Dropper Analysis
Dropper Analysis Botconf 2017 Lightning talks Gaël Muller 🗣 Edit
Botconf 2017
DEFT Linux #weareback!
DEFT Linux #weareback! Botconf 2017 Lightning talks Giovanni Rattaro 🗣 Edit PDF
DEFT Linux #weareback! Read More »
Stantinko: a Massive Adware Campaign Operating Covertly since 2012
Stantinko: a Massive Adware Campaign Operating Covertly since 2012 Botconf 2017 Thursday | 16:30 – 17:30 Matthieu Faou 🗣 | Frédéric Vachon 🗣 Stantinko is a botnet that we estimate infects around half a million machines mainly located in the Russian Federation and Ukraine. In addition to its prevalence, Stantinko stands out because of its use of
Stantinko: a Massive Adware Campaign Operating Covertly since 2012 Read More »
How to Compute the Clusterization of a Very Large Dataset of Malware with Open Source Tools for Fun & Profit?
How to Compute the Clusterization of a Very Large Dataset of Malware with Open Source Tools for Fun & Profit? Botconf 2017 Wednesday | 10:30 – 11:10 Robert Erra 🗣 | Sébastien Larinier 🗣 | Alexandre Letois | Marwan Burelle Malware are now developed at an industrial scale and human analysts need automatic tools to help them.We propose here to present
Malware, Penny Stocks, Pharma Spam — Necurs Delivers
Malware, Penny Stocks, Pharma Spam — Necurs Delivers Botconf 2017 Friday | 14:00 – 14:30 Jaeson Schultz 🗣 | Warren Mercer | Edmund Brumaghin | Nick Biasini Email threats have always been a major part of the threat landscape. As the use of exploit kits and other malware distribution techniques have decreased, malicious spam campaigns play an even greater role in
Malware, Penny Stocks, Pharma Spam — Necurs Delivers Read More »
Thinking Outside of the (Sand)box
Thinking Outside of the (Sand)box Botconf 2017 Friday | 14:30 – 15:10 Łukasz Siewierski 🗣 During my talk, I will outline the current state of apps that try to break the Android sandbox model, either by directly exploiting the Android device or by trying to circumvent the protections in place. In the past, there has
Thinking Outside of the (Sand)box Read More »
Advanced Threat Hunting
Advanced Threat Hunting Botconf 2017 Friday | 15:10 – 16:00 Robert Simmons 🗣 Many threat intelligence teams are small and must make limited resources work in the most efficient way possible. The data these teams rely on may be quite high volume and potentially low signal to noise ratio. The tools used to collect and
Advanced Threat Hunting Read More »
KNIGHTCRAWLER, « Discovering Watering-holes for Fun, Nothing. »
KNIGHTCRAWLER, « Discovering Watering-holes for Fun, Nothing. » Botconf 2017 Thursday | 09:30 – 09:50 Félix Aimé 🗣 How to find watering holes (aka. Strategic Web Compromise – SWC) from your bedroom? At the intersection between geopolitics and technology, « KNIGHTCRAWLER » is a personal project developed to find some malicious activities on several thousand
KNIGHTCRAWLER, « Discovering Watering-holes for Fun, Nothing. » Read More »
The (makes me) Wannacry Investigation
The (makes me) Wannacry Investigation Botconf 2017 Thursday | 09:50 – 10:20 Alan Neville 🗣 On May 12, 2017 a virulent new strain of ransomware known as Wannacry hit hundreds of thousands of computers affecting all types of organisations across the globe. While it is well understand how Wannacry spread using EternalBlue, there was little
The (makes me) Wannacry Investigation Read More »