PPT-Reverse Engineering Malware For

Newbies A guide for those of you who want to break into the fun world of malware What Were Going To Cover Basic x8664 ASM Tools of the trade Setting up an environment Intro to the Debugger . MSc Information Security . Project 2013/2014. Author: Nicholas . Aquilina. Supervisor: . Dr. Konstantinos . Markantonakis. Aims and . Objectives of Project. Understand and . analyse. . current malware strategies. MARS.MTC.SRI.COM. Motivation. Malware landscape is diverse and constant evolving. Large botnets. Diverse propagation vectors, exploits, C&C. Capabilities – backdoor, keylogging, rootkits,. Logic bombs, time-bombs. 2012 . IEEE/IPSJ 12. th. . International . Symposium on Applications and the . Internet. 102062596 . 陳盈妤. 1. /10. Outline. Introduction of proposed method. Previous works by catching random behavior. Sophisticated Criminals or . Babytown. Frolics?. Ryan Merritt. Josh Grunzweig. Who We Are. Josh Grunzweig. Security Researcher. Malware Reverser. Dabbles in Ruby. Homebrewer. Ryan Merritt. Security Researcher. Newbies. A guide for those of you who want to break into the fun world of malware.. What We’re Going To Cover. Basic x86/64 ASM. Tools of the trade. Setting up an environment. Intro to the Debugger . Connor Schnaith, Taiyo Sogawa. 9 April 2012. Motivation. “. 5. 000 . new. malware samples per day”. --David Perry of Trend Micro. Large variance between attacks. Polymorphic attacks . Perform the same function. CS 598: Network Security. Michael Rogers & Leena Winterrowd. March 26, 2013. Types of Malware. Image courtesy of prensa.pandasecurity.com. Types of Malware. Viruses 16,82%. Trojan horses. 69.99%. Requirements. TARDEC . 2. 5 AUG 2015. 1. Presented by: Kim Hanke. TARDEC SIE CSI/EST. Distribution A approved for Public Release; distribution Unlimited, per AR 380-5. . OPSEC Review conducted per AR 530-1 . Meltem Ozsoy. *. , Caleb . Donovick. *. , . Iakov. . Gorelik. *. ,. Nael. Abu-. Ghazaleh. **. and Dmitry . Ponomarev. *. *. Binghamton University, . **. University of California, Riverside. HPCA 2015 - San Francisco, CA. Jeremy . Blackthorne. , Benjamin Kaiser, . Benjamin Fuller. , and Bulent . Yener. Contribution. Malware changes behavior by observing environment to avoid analysis. Complementary technique to obfuscation. Erdal Ozkaya . Raymond Comvalius. CISO . Infrastructure Architect. Emt. Holding . NEXTXPERT. Module Agenda. First response at a malware attack. Recognizing. malware. Identifying. Spam:. Spam is unsolicited or undesired electronic junk mail. Characteristics of spam are:. Mass . mailing to large number of recipients. Usually a commercial advertisement. Annoying but usually harmless unless coupled with a fraud based phishing scam . KTM525. Anthony Gatlin, Richard Leathers, Robert Willis. Objective. GOAL: Create a mockup of an over-bored KTM525 so that further study and redesign can be conducted.. KTM525 engine will be used on the Formula Hybrid Challenge race car in the future.. Nael Abu-Ghazaleh. Joint work with Khaled . Khasawneh. , Dmitry . Ponomarev. and Lei Yu. Malware is Everywhere!. Malware is Everywhere!. Over 250,000 malware registered every day! . Hardware Malware Detectors (HMDs).