Barncat - Using MISP for Bulk Surveillance of Malware

Barncat - Using MISP for Bulk Surveillance of Malware

Cooper via YouTube Direct link

What can you do with malware configs? • Sinkholing for victim notification is a possibility

5 of 11

5 of 11

What can you do with malware configs? • Sinkholing for victim notification is a possibility

Class Central Classrooms beta

YouTube videos curated by Class Central.

Classroom Contents

Barncat - Using MISP for Bulk Surveillance of Malware

Automatically move to the next video in the Classroom when playback concludes

  1. 1 Barncat: Using MISP for Bulk Surveillance of Malware
  2. 2 Introduction • Manager of Threat Systems with Fidelis Cybersecurity
  3. 3 Malware Config Ripping - Dynamic analysis is good, but bin may not run correctly and is resource intensive
  4. 4 Your Starter Kit
  5. 5 What can you do with malware configs? • Sinkholing for victim notification is a possibility
  6. 6 Sample DarkComet Data
  7. 7 Example Config
  8. 8 What can you do with this?
  9. 9 Digging deeper
  10. 10 Dark Comet Campaign
  11. 11 Barncat Access

Never Stop Learning.

Get personalized course recommendations, track subjects and courses with reminders, and more.

Someone learning on their laptop while sitting on the floor.