Fileless Malware Fun

Tuesday, 28 May 2019 11:00PM EST (29 May 2019 03:00 UTC)
Speaker: Hal Pomeranz

This webcast will not have a slide deck.

Note: This webcast is free of charge however a SANS portal account is required (see webcast link for details)

SANS Asia-Pacific Webcast Series- Fileless Malware Fun

Come join SANS Fellow Hal Pomeranz on an expedition into the \fileless" persistence mechanism of the Kovter malware. Registry hacks, Javascript, Powershell, shell code, and obfuscated binaries-- we've got all of that and more! Come learn some of the typical strategies used by fileless samples, and some tricks for cutting through all of the confusion and getting to your analysis more rapidly.

Login to Register

Related Content

Finding_Evil_WMI_Event_Consumers_with_Disk_Forensics_-Blog_(1).png

Digital Forensics and Incident Response

Finding Evil WMI Event Consumers with Disk Forensics

This blog covers disk-based artifacts and tools available for use during deeper forensic investigations.

Blog_teaser_images_(19).png

Digital Forensics and Incident Response, Open-Source Intelligence (OSINT)

FOR589: Cybercrime Intelligence - NEW SANS DFIR Course coming in 2024

Learn to hunt for Dark Web Intelligence, Social Engineer cybercriminals, investigate illicit Blockchain activity, and analyze Cryptocurrency evidence

Digital Forensics and Incident Response

Ransomware: Every internet-connected network is at risk. Be prepared!

As ransomware attacks increase in number and severity, even the most advanced security systems can be compromised. Here is what you can do to prepare.