Bypassing FireEye – Toorcon vid / slides
Hello fellow readers! I thought I’d be nice and upload my talk slides as well as the code used and video. Slides Code Video Enjoy!
Hello fellow readers! I thought I’d be nice and upload my talk slides as well as the code used and video. Slides Code Video Enjoy!
Greetings and salutations. Today I’m going to be going over some malware I found in the wild. I found it after doing a search for ‘hack’ on the ‘rapidshare’ section of 4chan. With the name ‘SteamHackCount.exe’, being about 350 kb, and having the Apple icon? Totally legit right??? Opening the program in IDA showed the […]
Hello again! It’s been a busy week at work. Lots of unique malware. As you may or may not know, malware uses non-conventional things to stay hidden and throw off heuristic analysis. I see weird stuff. Instructions that make no sense in context like the ‘out’ instruction, blocks of code which perform floating point arithmetic […]
Hello loyal readers. Good news! I’ve been picked to speak at ToorCon in San Diego next month in October. I will be going over my findings in malware that manages to slip by FireEye undetected. A chink in the armor of one of the most powerful (and expensive) malware appliances out there. But enough about […]