Youtube is a video-sharing platform that offers a wide variety of educational content, including lectures, tutorials, and courses on a wide range of subjects....
Description
Vadim Kotov and Nick Cano present a three-way approach to unpacking malware, which they developed as an open-source tool called the 'packer attacker.' They explain that they wanted to provide a solution for independent researchers and academics to analyze malware at scale. The talk begins with background information on the topic, including the definition of 'packers' and how malware executes on a machine. The presenters then dive into the specifics of how malware unpacks and transfers control to its payload, using examples from their own research. They also discuss the importance of understanding malware at scale and the limitations of commercial solutions. Throughout the talk, Kotov and Cano provide detailed explanations of the techniques and tools used in their research.