Threat actors have always played the game of emotions. Fear is the emotion they are using right now to lure users to click on an email or manipulate them to install an application. In the last four months, cyber criminals have used fear as their main weapon to compromise users by using pandemic-related themes to deliver malware. The dropped malwares are deadlier and stealthier and are hybrid in nature.
This talk begins by dissecting current examples of trojans that are exploiting the pandemic theme. We will discuss new techniques employed by trojans, delivery mechanisms, and multi-level obfuscations that delay investigations. The talk will also feature some multi-level obfuscation decoding and how investigators approach such tricky scenes. We will also do a sneak peek on memory acquisitions and how they play a vital role in investigations when malwares get deadlier and stealthier.