all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Incident Analysis Case Study Focusing on.NET Malware

Add to bookmarks
Sept. 19, 2023, 1:10 p.m. | SANS Digital Forensics and Incident Response

SANS Digital Forensics and Incident Response www.youtube.com

This year, we observed an attack in Taiwan using DLL sideloading malware. This could have started around 2021 and continued until we started monitoring and making discoveries. The DLL was named "TSVIPSvr.dll" and was loaded by the SessionEnv service and was ultimately intended for C&C communication by Cobalt Strike. We dealt with this attack by working effectively with our monitoring team, endpoint forensics team, and malware analysis team. In this presentation, we will talk about a series of attack techniques …

amp analysis attack case cobalt cobalt strike communication dll dll sideloading incident making malware monitoring .net service sideloading strike study taiwan ultimately

Visit resource

More from www.youtube.com / SANS Digital Forensics and Incident Response

SANS Threat Analysis Rundown (STAR) | Live Stream 3 days, 23 hours ago | www.youtube.com
access accounts acquisition analysis +25
Threat Actor Tool Analysis at Enterprise Scale | Host: Ryan Chapman | September 19, 2023 6 days, 2 hours ago | www.youtube.com
actor analysis detect discovery +15
Leveraging Digital Footprints for Darkweb Investigations and Attack Surface Management 6 days, 15 hours ago | www.youtube.com
analyst apt apt groups attack +31
Breaching the Depths of the Abyss: Exposing Rootkits and Bootkits 6 days, 15 hours ago | www.youtube.com
advanced advanced malware compromised cyber +13
Windows Registry Forensics: There’s Always Something New 6 days, 15 hours ago | www.youtube.com
analysis fast forensics foundation +12
Defending and Investigating Hypervisors 6 days, 15 hours ago | www.youtube.com
attack attacks continue covert +19
How to Effectively Investigate a Human-Operated Ransomware Attack 6 days, 15 hours ago | www.youtube.com
access attack attacks challenges +18
iOS Advanced Recovery: Looking for Deleted Evidence of WhatsApp Activities 6 days, 15 hours ago | www.youtube.com
advanced analysis apple artifacts +15
Hunting C2 Beaconing at Scale in the Modern Age 6 days, 15 hours ago | www.youtube.com
age applications continue domain +12

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Business Information Security Officer

@ Metrolink | Los Angeles, CA
View on infosec-jobs.com

Senior Security Engineer

@ Freedom of the Press Foundation | Remote, 4 hour time zone overlap with New York City
View on infosec-jobs.com

Security Engineer

@ ChartMogul | Remote, EU
View on infosec-jobs.com

Cyber Hunt Subject Matter Expert (SME) - Hybrid

@ XOR Security | Alexandria, VA
View on infosec-jobs.com

Software Compliance, Safety and Security Manager (w/m/d)

@ Bosch Group | Stuttgart, Germany
View on infosec-jobs.com

Chef de projet - Service PKI

@ Alter Solutions | Paris, France
View on infosec-jobs.com
View more jobs