Automated Malware Attribution Engines - Understanding Cybercriminal Group Detection
Hack In The Box Security Conference via YouTube
Overview
Explore the intricate world of automated malware attribution in this technical conference talk from HITB2024 Bangkok COMMSEC Day 1. Learn how attribution engines analyze malicious code samples to identify cybercriminal groups through code base analysis, tactics, techniques, and network infrastructure examination. Discover how automated threat attribution engines compare specific malware samples against known threat databases using multiple characteristics to generate similarity ratings with established APT group tools. Gain insights from an experienced malware analyst who has spent years studying APT group attacks, analyzing tools and infrastructure, and developing automated classification approaches for Threat Intelligence purposes. Understand how early attribution can help predict attacker behaviors and enable proactive defense strategies in an evolving cyber threat landscape.
Syllabus
#HITB2024BKK #COMMSEC D1: Who’s the Author? How Automated Malware Attribution Engines Work
Taught by
Hack In The Box Security Conference