dragonjar tv episodio 5 - malware edition
DESCRIPTION
Nuevo episodio de DragonJAR TV con la participación de Marc Rivero López, también conocido como Seifreed, quien nos habló un poco de Malware, sus tipos, variables, como analizarlo y que herramientas utilizar para hacerlo.TRANSCRIPT
![Page 1: DragonJAR TV Episodio 5 - Malware Edition](https://reader035.vdocuments.us/reader035/viewer/2022062513/55635f17d8b42a5c598b4b8b/html5/thumbnails/1.jpg)
Hangout MalwareHangout MalwareMarc Rivero López
![Page 2: DragonJAR TV Episodio 5 - Malware Edition](https://reader035.vdocuments.us/reader035/viewer/2022062513/55635f17d8b42a5c598b4b8b/html5/thumbnails/2.jpg)
About me…
• E-crime intelligence analyst
• Fraud researcher• Crazy Drummer• DragonJAR, Flu-
Project, Security by Default
@seifreed
![Page 3: DragonJAR TV Episodio 5 - Malware Edition](https://reader035.vdocuments.us/reader035/viewer/2022062513/55635f17d8b42a5c598b4b8b/html5/thumbnails/3.jpg)
Índice de la charla
• Introducción• Casos reales• ¿Porqué ocurre?• SQL injection• XSS• Mas vulnerabilidades• CMS• WAF• Recomendaciones
![Page 4: DragonJAR TV Episodio 5 - Malware Edition](https://reader035.vdocuments.us/reader035/viewer/2022062513/55635f17d8b42a5c598b4b8b/html5/thumbnails/4.jpg)
Un poco de conceptos
![Page 5: DragonJAR TV Episodio 5 - Malware Edition](https://reader035.vdocuments.us/reader035/viewer/2022062513/55635f17d8b42a5c598b4b8b/html5/thumbnails/5.jpg)
EXPLOITS KITS
MALWARE MÓVILES
PHISHING
TROYANOS
BANCARIOS
SANDBOX
MALWARE
Un poco de conceptos
![Page 6: DragonJAR TV Episodio 5 - Malware Edition](https://reader035.vdocuments.us/reader035/viewer/2022062513/55635f17d8b42a5c598b4b8b/html5/thumbnails/6.jpg)
ID +PASSW
ORD
VIRTUAL KEYBOA
RD
OTP CODE CARD
TOKENSMS/mTAN
Smartcard2FA
![Page 7: DragonJAR TV Episodio 5 - Malware Edition](https://reader035.vdocuments.us/reader035/viewer/2022062513/55635f17d8b42a5c598b4b8b/html5/thumbnails/7.jpg)
PHARMING
PHISHINGAVANZADO
PHISHINGCUTRE
KITS DE PHISHING
![Page 8: DragonJAR TV Episodio 5 - Malware Edition](https://reader035.vdocuments.us/reader035/viewer/2022062513/55635f17d8b42a5c598b4b8b/html5/thumbnails/8.jpg)
![Page 9: DragonJAR TV Episodio 5 - Malware Edition](https://reader035.vdocuments.us/reader035/viewer/2022062513/55635f17d8b42a5c598b4b8b/html5/thumbnails/9.jpg)
![Page 10: DragonJAR TV Episodio 5 - Malware Edition](https://reader035.vdocuments.us/reader035/viewer/2022062513/55635f17d8b42a5c598b4b8b/html5/thumbnails/10.jpg)
![Page 11: DragonJAR TV Episodio 5 - Malware Edition](https://reader035.vdocuments.us/reader035/viewer/2022062513/55635f17d8b42a5c598b4b8b/html5/thumbnails/11.jpg)
![Page 12: DragonJAR TV Episodio 5 - Malware Edition](https://reader035.vdocuments.us/reader035/viewer/2022062513/55635f17d8b42a5c598b4b8b/html5/thumbnails/12.jpg)
TROYANOS BANCARIOS
EVOLUCIÓNPRODUCTO/SERVICIO/
PRODUCTO + SERVICIO
![Page 13: DragonJAR TV Episodio 5 - Malware Edition](https://reader035.vdocuments.us/reader035/viewer/2022062513/55635f17d8b42a5c598b4b8b/html5/thumbnails/13.jpg)
¿Vas ha hablar de
Flu-Project?
¿Vas ha hablar de
Flu-Project?
Flu mola!!!!!
![Page 14: DragonJAR TV Episodio 5 - Malware Edition](https://reader035.vdocuments.us/reader035/viewer/2022062513/55635f17d8b42a5c598b4b8b/html5/thumbnails/14.jpg)
TROYANOS EN
MÓVILES
EVOLUCIÓN CON LAS
PLATAFORMAS
![Page 15: DragonJAR TV Episodio 5 - Malware Edition](https://reader035.vdocuments.us/reader035/viewer/2022062513/55635f17d8b42a5c598b4b8b/html5/thumbnails/15.jpg)
![Page 16: DragonJAR TV Episodio 5 - Malware Edition](https://reader035.vdocuments.us/reader035/viewer/2022062513/55635f17d8b42a5c598b4b8b/html5/thumbnails/16.jpg)
![Page 17: DragonJAR TV Episodio 5 - Malware Edition](https://reader035.vdocuments.us/reader035/viewer/2022062513/55635f17d8b42a5c598b4b8b/html5/thumbnails/17.jpg)
![Page 18: DragonJAR TV Episodio 5 - Malware Edition](https://reader035.vdocuments.us/reader035/viewer/2022062513/55635f17d8b42a5c598b4b8b/html5/thumbnails/18.jpg)
ESTADÍSTICASEXPLOIT KIT +
MALWARE BANCARIO
![Page 19: DragonJAR TV Episodio 5 - Malware Edition](https://reader035.vdocuments.us/reader035/viewer/2022062513/55635f17d8b42a5c598b4b8b/html5/thumbnails/19.jpg)
![Page 20: DragonJAR TV Episodio 5 - Malware Edition](https://reader035.vdocuments.us/reader035/viewer/2022062513/55635f17d8b42a5c598b4b8b/html5/thumbnails/20.jpg)
![Page 21: DragonJAR TV Episodio 5 - Malware Edition](https://reader035.vdocuments.us/reader035/viewer/2022062513/55635f17d8b42a5c598b4b8b/html5/thumbnails/21.jpg)
![Page 22: DragonJAR TV Episodio 5 - Malware Edition](https://reader035.vdocuments.us/reader035/viewer/2022062513/55635f17d8b42a5c598b4b8b/html5/thumbnails/22.jpg)
OllyDBG =>
IDA PRO
Debugguers
![Page 23: DragonJAR TV Episodio 5 - Malware Edition](https://reader035.vdocuments.us/reader035/viewer/2022062513/55635f17d8b42a5c598b4b8b/html5/thumbnails/23.jpg)
![Page 24: DragonJAR TV Episodio 5 - Malware Edition](https://reader035.vdocuments.us/reader035/viewer/2022062513/55635f17d8b42a5c598b4b8b/html5/thumbnails/24.jpg)
![Page 25: DragonJAR TV Episodio 5 - Malware Edition](https://reader035.vdocuments.us/reader035/viewer/2022062513/55635f17d8b42a5c598b4b8b/html5/thumbnails/25.jpg)
Infraestructura sencilla
Dashboard
![Page 26: DragonJAR TV Episodio 5 - Malware Edition](https://reader035.vdocuments.us/reader035/viewer/2022062513/55635f17d8b42a5c598b4b8b/html5/thumbnails/26.jpg)
CANTIDADES DE
MALWARE
PROCESOS AUTOMATICOS
MALWARE VS
ANALISTA
![Page 27: DragonJAR TV Episodio 5 - Malware Edition](https://reader035.vdocuments.us/reader035/viewer/2022062513/55635f17d8b42a5c598b4b8b/html5/thumbnails/27.jpg)
Y MAS, Y MAS, Y MAS
….
![Page 28: DragonJAR TV Episodio 5 - Malware Edition](https://reader035.vdocuments.us/reader035/viewer/2022062513/55635f17d8b42a5c598b4b8b/html5/thumbnails/28.jpg)
![Page 29: DragonJAR TV Episodio 5 - Malware Edition](https://reader035.vdocuments.us/reader035/viewer/2022062513/55635f17d8b42a5c598b4b8b/html5/thumbnails/29.jpg)
![Page 30: DragonJAR TV Episodio 5 - Malware Edition](https://reader035.vdocuments.us/reader035/viewer/2022062513/55635f17d8b42a5c598b4b8b/html5/thumbnails/30.jpg)
![Page 31: DragonJAR TV Episodio 5 - Malware Edition](https://reader035.vdocuments.us/reader035/viewer/2022062513/55635f17d8b42a5c598b4b8b/html5/thumbnails/31.jpg)
MÁQUINA VIRTUALDEBUGURL’S
DINÁMICAS
TIMMING
![Page 32: DragonJAR TV Episodio 5 - Malware Edition](https://reader035.vdocuments.us/reader035/viewer/2022062513/55635f17d8b42a5c598b4b8b/html5/thumbnails/32.jpg)
![Page 33: DragonJAR TV Episodio 5 - Malware Edition](https://reader035.vdocuments.us/reader035/viewer/2022062513/55635f17d8b42a5c598b4b8b/html5/thumbnails/33.jpg)
PETICIÓNDNS
FALSATRÁFICO
MANIPULADO
![Page 34: DragonJAR TV Episodio 5 - Malware Edition](https://reader035.vdocuments.us/reader035/viewer/2022062513/55635f17d8b42a5c598b4b8b/html5/thumbnails/34.jpg)
• La muestra, dependiendo en algunos casos, del año, el día etc.. Generará un dominio
en base a un algoritmo.
![Page 35: DragonJAR TV Episodio 5 - Malware Edition](https://reader035.vdocuments.us/reader035/viewer/2022062513/55635f17d8b42a5c598b4b8b/html5/thumbnails/35.jpg)
USER AGENTS
SISTEMAS OPERATIV
OS
![Page 36: DragonJAR TV Episodio 5 - Malware Edition](https://reader035.vdocuments.us/reader035/viewer/2022062513/55635f17d8b42a5c598b4b8b/html5/thumbnails/36.jpg)
![Page 37: DragonJAR TV Episodio 5 - Malware Edition](https://reader035.vdocuments.us/reader035/viewer/2022062513/55635f17d8b42a5c598b4b8b/html5/thumbnails/37.jpg)
![Page 38: DragonJAR TV Episodio 5 - Malware Edition](https://reader035.vdocuments.us/reader035/viewer/2022062513/55635f17d8b42a5c598b4b8b/html5/thumbnails/38.jpg)
![Page 39: DragonJAR TV Episodio 5 - Malware Edition](https://reader035.vdocuments.us/reader035/viewer/2022062513/55635f17d8b42a5c598b4b8b/html5/thumbnails/39.jpg)
CÓDIGOS OFUSCADOSINTERACTÚA
N CON LA BANCA
![Page 40: DragonJAR TV Episodio 5 - Malware Edition](https://reader035.vdocuments.us/reader035/viewer/2022062513/55635f17d8b42a5c598b4b8b/html5/thumbnails/40.jpg)
EVOLUCIÓN EN EL
ROBO DE DINERO
![Page 41: DragonJAR TV Episodio 5 - Malware Edition](https://reader035.vdocuments.us/reader035/viewer/2022062513/55635f17d8b42a5c598b4b8b/html5/thumbnails/41.jpg)
MULEROS 2.0
![Page 42: DragonJAR TV Episodio 5 - Malware Edition](https://reader035.vdocuments.us/reader035/viewer/2022062513/55635f17d8b42a5c598b4b8b/html5/thumbnails/42.jpg)
INFRAESTRUCTURAS COMPROMETIDAS
![Page 43: DragonJAR TV Episodio 5 - Malware Edition](https://reader035.vdocuments.us/reader035/viewer/2022062513/55635f17d8b42a5c598b4b8b/html5/thumbnails/43.jpg)
INGENIERÍA SOCIAL EN
LAS INYECCIONE
S
USAN MAS DE UN
SERVIDOR
![Page 44: DragonJAR TV Episodio 5 - Malware Edition](https://reader035.vdocuments.us/reader035/viewer/2022062513/55635f17d8b42a5c598b4b8b/html5/thumbnails/44.jpg)
![Page 45: DragonJAR TV Episodio 5 - Malware Edition](https://reader035.vdocuments.us/reader035/viewer/2022062513/55635f17d8b42a5c598b4b8b/html5/thumbnails/45.jpg)
![Page 46: DragonJAR TV Episodio 5 - Malware Edition](https://reader035.vdocuments.us/reader035/viewer/2022062513/55635f17d8b42a5c598b4b8b/html5/thumbnails/46.jpg)
![Page 47: DragonJAR TV Episodio 5 - Malware Edition](https://reader035.vdocuments.us/reader035/viewer/2022062513/55635f17d8b42a5c598b4b8b/html5/thumbnails/47.jpg)
![Page 48: DragonJAR TV Episodio 5 - Malware Edition](https://reader035.vdocuments.us/reader035/viewer/2022062513/55635f17d8b42a5c598b4b8b/html5/thumbnails/48.jpg)
¿PREGUNTAS?