Join us at RSA

Written by Jamie Butler

Join Peter Silberman and I at RSA as we present “Advanced Memory Analysis: Battling Malware and Its Protection”.  MANDIANT will also be exhibiting in booth 345 on the show floor. Come by and see our team’s newest creation, MANDIANT Intelligent Response 1.3.

Abstract: A copy of the hard drive used to reveal everything.  Today, malware is more defensive – often packed or encoded to avoid static analysis and equipped with the ability to prevent execution in a debugger or a VM.  Malware can even reside completely in memory and never write to the disk.  Memory analysis is now a requirement for forensic or incident analysis.  Watch as we identify and reconstruct malware using only memory.

Time: Tuesday, April 21, 4:10 pm
Session ID: HT2-107

Leave a Reply

You must be logged in to post a comment.

Channels

Recent Posts

• DoD Cyber Crime Conference Presentation: Recipes for Remediation
• Education and Information Sharing Top Priority at 2012 DoD Cyber Crime Conference
• Executive Breakfast Briefing with Former DHS Secretary Michael Chertoff
• Vulnerability and Exploit Terminology Webinar
• Creating an IOC to Spot the Duqu Family

Follow us on Twitter

• Mandiant: M's Michael Sikorski wrote a book, "Practical Malware Analysis" & will be hosting a webinar to discuss it! 2/29 2PM ET http://t.co/fd7Bf8Vj
• Mandiant: RT @bkchristopher: The BKChristopher Daily is out! http://t.co/G12zUzeS ▸ Top stories today via @mandiant
• Mandiant: M's looking for a Manager, MCIRT SOC in Redwood City, CA. Interested or know someone? http://t.co/TyxHEgfy #infosec #dfir #jobs

MANDIANT News

• Gartner Security and Risk Management Summit 2012
• CEIC Conference 2012
• SyScan 2012
• New York Executive Briefing: Combating Advanced Targeted Cyber Attacks