malware Archives - Forensic Focus

The Trojan solved the Bhima Koregaon case!

20th January 2023

By RJM How proper file, malware, and memory forensics techniques were able to catch the ModifiedElephant threat actor planting incriminating evidence on defendants’ computers in India. Disclaimer: The views, methods, and opinions expressed at Anchored Narratives are the author’s and… Read more

Malware Family Classification Via Efficient Huffman Features

18th March 2022

Hello everyone. My name is Steven O’Shaughnessy, and I’m a lecturer from the Technological University in Dublin. And on behalf of my colleague, Frank Breitinger from the University of Lausanne and myself, I am presenting our paper entitled malware family… Read more

Robust Malware Detection Models: Learning From Adversarial Attacks and Defenses

11th February 2022

Hello to all of you. My name is Hemant Rathore and I’m here to present the work “Robust Malware Detection Models: Learning From Adversarial Attacks and Defenses.” The other authors of this paper are Adithya Samavedhi, Sanjay K Sahay, and… Read more

Research Roundup: Micro Analysis To Macro Implications In Digital Forensics

26th May 2021

Our brief roundup this month looks at seven recent papers, which look at improving malware detection and acquisition, analyzing instant messaging apps and the Zoom platform, the future of digital forensics tools and practice, and finally, a framework for forensic… Read more

How To Use AXIOM In Malware Investigations: Part II

14th May 202014th November 2019

Hey everyone, Tara Nelson here with Magnet Forensics. Today I’m going to give a little insight into how AXIOM can help with some of your day-to-day investigations. In this video we’re going to talk a little bit about malware investigations.… Read more

How To Use AXIOM In Malware Investigations: Part I

14th May 202011th November 2019

Hey everyone, Tara Nelson here with Magnet Forensics. Today I’m going to give a little bit of insight into how AXIOM can help with some of your day-to-day investigations. In part one of the segment we’re going to talk a… Read more

The Opportunity In The Crisis: ICS Malware Digital Forensics And Incident Response

12th May 202030th May 2019

by Christa Miller, Forensic Focus Malware aimed at industrial control systems (ICS) is nothing new. Nearly 10 years have passed since Stuxnet first targeted the supervisory control and data acquisition (SCADA) systems and programmable logic controllers (PLCs) associated with centrifuges… Read more

Dissecting Malicious Network Traffic To Identify Botnet Communication

12th May 20207th January 2019

by Swasti Bhushan Deb Botnets are well-known in the domains of information security, digital forensics and incident response for hosting illegal data, launching DDOS attacks, stealing information, spamming, bitcoin mining, spreading ransomware, launching brute force attacks, managing remote access to… Read more

Deep Learning At The Shallow End: Malware Classification For Non-Domain Experts

12th May 202020th June 2018

by Quan Le, Oisín Boydell, Brian Mac Namee & Mark Scanlon Abstract Current malware detection and classification approaches generally rely on time consuming and knowledge intensive processes to extract patterns (signatures) and behaviors from malware, which are then used for… Read more

Finding Metasploit’s Meterpreter Traces With Memory Forensics

12th May 20203rd April 2018

by Oleg Skulkin & Igor Mikhaylov Metasploit Framework is not only very popular among pentesters, but is also quite often used by real adversaries. So why is memory forensics important here? Because Meterpreter, for example – an advanced, dynamically extensible… Read more

Malware Can Hide, But It Must Run

12th May 202027th October 2016

by Alissa Torres, SANS Certified Instructor It’s October, haunting season. However, in the forensics world, the hunting of evil never ends. And with Windows 10 expected to be the new normal, digital forensics and incident response (DFIR) professionals who lack… Read more