MazeWalker - Enriching static malware analysis

Presented at REcon 2017, June 18, 2017, 2 p.m. (60 minutes)

MazeWalker - is a tool for conducting a static malware analysis with IDA. The analyzed binary execution is traced and analyzed to create a loose timeline of the execution from initial dropper till the full deployment. The tool enables the researcher to see the full picture and at the same time concentrate on s specific topic of the execution (Memory, Networking, Threads…)




Similar Presentations: