I Know You Want Me - Unplugging PlugX

Presented at Black Hat Asia 2014, Unknown date/time (Unknown duration).

PlugX is one of the most notorious RAT used for targeted attacks and the author still extends its implementation aggressively.


Presenters:

  • Takahiro Haruyama - Internet Initiative Japan, Inc.
    Takahiro Haruyama is a forensic investigator, malware analyst, and reverse engineer with over eight years of extensive experience and knowledge in intrusion detection, authentication, VPN, digital forensics and malware analysis. He is the author of memory forensic EnCase EnScript such as Raw Image Analyzer (previously known as Memory Forensic Toolkit) and Crash Dump Analyzer. He has spoken or taught hands-on classes at several famous conferences including Black Hat USA/Europe, SANS Digital Forensics and Incident Response Summit, The Computer Enterprise and Investigations Conference, FIRST Technical Colloquium, and RSA Conference Japan. He holds EnCE (EnCase Certified Examiner) certification.
  • Hiroshi Suzuki - Internet Initiative Japan, Inc.
    Hiroshi Suzuki is a malware analyst and incident responder, working for a Japanese ISP company, Internet Initiative Japan, Inc. He is a member of IIJ-SECT that is private CSIRT on his company. His main job is to analyze malware and vulnerabilities, to observe malware activity, and digital forensics. He has over 8 years dedicated to those areas. He is a speaker and trainer for international conference like Black Hat and FIRST.

Links: