Lupo: Malware IOC Extractor

Presented at DEF CON 31 (2023), Aug. 12, 2023, 10 a.m. (115 minutes)

Lupo is a dynamic analysis tool that can be used as a module with the debugger.

Presenters:

• Vishal Thakur
  Vishal Thakur has worked in the information security industry for many years in hands-on technical roles, specializing in Incident Response with a heavy focus on Emerging Threats, Malware Analysis and Research. He has presented his research at international conferences (BlackHat, FIRST, SANS DFIR Summit) and has also run training/workshops at BlackHat and FIRST Conference. Vishal is currently working as Manager, Threat Operations Center at Huntress. In past roles, Vishal worked as a Senior Researcher at Salesforce, helping their Incident Response Centre with advanced threat analysis and developing DFIR tools and has been a part of the Incident Response team at the Commonwealth Bank of Australia.

Similar Presentations:

• BSidesDC 2014 / Agile Defense
• VB2018 / Android app deobfuscation using static-dynamic cooperation
• Black Hat USA 2010 / Virt-ICE: Next Generation Debugger for Malware Analysis