Identifying Evil: An introduction to Reverse Engineering Malware and other software

Presented at DerbyCon 3.0 All in the Family (2013), Sept. 27, 2013, 6 p.m. (50 minutes).

You just discovered a piece of suspicious software. What are your next steps? This talk will explain the fundamentals of malware analysis and reverse engineering. These skills are increasingly needed due to the failures of signature based malware detection systems, inclusion of undesirable features in common software (grayware), and undocumented features in commercial software.

Key topics covered will include typical exploit chains, discovering indicators of compromise, common evasion and obfuscation techniques, and the use of analysis tools and techniques. A gentle introduction to assembly language and windows API calls will be given to allow the presentation to be of interest for all technical levels.


Presenters:

  • Bart Hopper / d4ncingd4n as Bart ‘d4ncind4n’ Hopper
    Bart ‘d4ncingd4n’ Hopper is a security analyst at a financial instituion. Prior to his work in security, he was a systems administrator for a healthcare start up. His training came from the ‘Book of the Month’ club, a quest for knowledge, and the school of hard knocks.

Similar Presentations: