Fighting Fileless Malware

  • Wednesday, 24 May 2017 11:00AM EDT (24 May 2017 15:00 UTC)
  • Speaker: Sanat Chugh

The Russian Kovter gang is the creator and operator of one of the world's most impactful and prolific fileless malware and botnet attack. The Kovter fileless malware is able to gain full control and long term persistence over victim machines, while operating fully out of memory, and without any files being dropped onto the file system, helping it evade most security tools.

Sanat Chugh, Researcher, at Cybereason will explain the Kovter fileless malware and its variants and present techniques organization can use to hunt, detect, and respond to these attacks.

In this webcast, you will:

  • Learn about fileless malware, such as powershell and other windows built-in scripting engines, and how they are leveraged by attackers to gain stealth and persistence
  • Learn how to detect and respond to these types of attacks