DragonJAR TV Episodio 5 - Malware Edition
-
Upload
jaime-restrepo -
Category
Technology
-
view
2.222 -
download
0
description
Transcript of DragonJAR TV Episodio 5 - Malware Edition
![Page 1: DragonJAR TV Episodio 5 - Malware Edition](https://reader035.fdocuments.in/reader035/viewer/2022062513/55635f17d8b42a5c598b4b8b/html5/thumbnails/1.jpg)
Hangout MalwareHangout MalwareMarc Rivero López
![Page 2: DragonJAR TV Episodio 5 - Malware Edition](https://reader035.fdocuments.in/reader035/viewer/2022062513/55635f17d8b42a5c598b4b8b/html5/thumbnails/2.jpg)
About me…
• E-crime intelligence analyst
• Fraud researcher• Crazy Drummer• DragonJAR, Flu-
Project, Security by Default
@seifreed
![Page 3: DragonJAR TV Episodio 5 - Malware Edition](https://reader035.fdocuments.in/reader035/viewer/2022062513/55635f17d8b42a5c598b4b8b/html5/thumbnails/3.jpg)
Índice de la charla
• Introducción• Casos reales• ¿Porqué ocurre?• SQL injection• XSS• Mas vulnerabilidades• CMS• WAF• Recomendaciones
![Page 4: DragonJAR TV Episodio 5 - Malware Edition](https://reader035.fdocuments.in/reader035/viewer/2022062513/55635f17d8b42a5c598b4b8b/html5/thumbnails/4.jpg)
Un poco de conceptos
![Page 5: DragonJAR TV Episodio 5 - Malware Edition](https://reader035.fdocuments.in/reader035/viewer/2022062513/55635f17d8b42a5c598b4b8b/html5/thumbnails/5.jpg)
EXPLOITS KITS
MALWARE MÓVILES
PHISHING
TROYANOS
BANCARIOS
SANDBOX
MALWARE
Un poco de conceptos
![Page 6: DragonJAR TV Episodio 5 - Malware Edition](https://reader035.fdocuments.in/reader035/viewer/2022062513/55635f17d8b42a5c598b4b8b/html5/thumbnails/6.jpg)
ID +PASSW
ORD
VIRTUAL KEYBOA
RD
OTP CODE CARD
TOKENSMS/mTAN
Smartcard2FA
![Page 7: DragonJAR TV Episodio 5 - Malware Edition](https://reader035.fdocuments.in/reader035/viewer/2022062513/55635f17d8b42a5c598b4b8b/html5/thumbnails/7.jpg)
PHARMING
PHISHINGAVANZADO
PHISHINGCUTRE
KITS DE PHISHING
![Page 8: DragonJAR TV Episodio 5 - Malware Edition](https://reader035.fdocuments.in/reader035/viewer/2022062513/55635f17d8b42a5c598b4b8b/html5/thumbnails/8.jpg)
![Page 9: DragonJAR TV Episodio 5 - Malware Edition](https://reader035.fdocuments.in/reader035/viewer/2022062513/55635f17d8b42a5c598b4b8b/html5/thumbnails/9.jpg)
![Page 10: DragonJAR TV Episodio 5 - Malware Edition](https://reader035.fdocuments.in/reader035/viewer/2022062513/55635f17d8b42a5c598b4b8b/html5/thumbnails/10.jpg)
![Page 11: DragonJAR TV Episodio 5 - Malware Edition](https://reader035.fdocuments.in/reader035/viewer/2022062513/55635f17d8b42a5c598b4b8b/html5/thumbnails/11.jpg)
![Page 12: DragonJAR TV Episodio 5 - Malware Edition](https://reader035.fdocuments.in/reader035/viewer/2022062513/55635f17d8b42a5c598b4b8b/html5/thumbnails/12.jpg)
TROYANOS BANCARIOS
EVOLUCIÓNPRODUCTO/SERVICIO/
PRODUCTO + SERVICIO
![Page 13: DragonJAR TV Episodio 5 - Malware Edition](https://reader035.fdocuments.in/reader035/viewer/2022062513/55635f17d8b42a5c598b4b8b/html5/thumbnails/13.jpg)
¿Vas ha hablar de
Flu-Project?
¿Vas ha hablar de
Flu-Project?
Flu mola!!!!!
![Page 14: DragonJAR TV Episodio 5 - Malware Edition](https://reader035.fdocuments.in/reader035/viewer/2022062513/55635f17d8b42a5c598b4b8b/html5/thumbnails/14.jpg)
TROYANOS EN
MÓVILES
EVOLUCIÓN CON LAS
PLATAFORMAS
![Page 15: DragonJAR TV Episodio 5 - Malware Edition](https://reader035.fdocuments.in/reader035/viewer/2022062513/55635f17d8b42a5c598b4b8b/html5/thumbnails/15.jpg)
![Page 16: DragonJAR TV Episodio 5 - Malware Edition](https://reader035.fdocuments.in/reader035/viewer/2022062513/55635f17d8b42a5c598b4b8b/html5/thumbnails/16.jpg)
![Page 17: DragonJAR TV Episodio 5 - Malware Edition](https://reader035.fdocuments.in/reader035/viewer/2022062513/55635f17d8b42a5c598b4b8b/html5/thumbnails/17.jpg)
![Page 18: DragonJAR TV Episodio 5 - Malware Edition](https://reader035.fdocuments.in/reader035/viewer/2022062513/55635f17d8b42a5c598b4b8b/html5/thumbnails/18.jpg)
ESTADÍSTICASEXPLOIT KIT +
MALWARE BANCARIO
![Page 19: DragonJAR TV Episodio 5 - Malware Edition](https://reader035.fdocuments.in/reader035/viewer/2022062513/55635f17d8b42a5c598b4b8b/html5/thumbnails/19.jpg)
![Page 20: DragonJAR TV Episodio 5 - Malware Edition](https://reader035.fdocuments.in/reader035/viewer/2022062513/55635f17d8b42a5c598b4b8b/html5/thumbnails/20.jpg)
![Page 21: DragonJAR TV Episodio 5 - Malware Edition](https://reader035.fdocuments.in/reader035/viewer/2022062513/55635f17d8b42a5c598b4b8b/html5/thumbnails/21.jpg)
![Page 22: DragonJAR TV Episodio 5 - Malware Edition](https://reader035.fdocuments.in/reader035/viewer/2022062513/55635f17d8b42a5c598b4b8b/html5/thumbnails/22.jpg)
OllyDBG =>
IDA PRO
Debugguers
![Page 23: DragonJAR TV Episodio 5 - Malware Edition](https://reader035.fdocuments.in/reader035/viewer/2022062513/55635f17d8b42a5c598b4b8b/html5/thumbnails/23.jpg)
![Page 24: DragonJAR TV Episodio 5 - Malware Edition](https://reader035.fdocuments.in/reader035/viewer/2022062513/55635f17d8b42a5c598b4b8b/html5/thumbnails/24.jpg)
![Page 25: DragonJAR TV Episodio 5 - Malware Edition](https://reader035.fdocuments.in/reader035/viewer/2022062513/55635f17d8b42a5c598b4b8b/html5/thumbnails/25.jpg)
Infraestructura sencilla
Dashboard
![Page 26: DragonJAR TV Episodio 5 - Malware Edition](https://reader035.fdocuments.in/reader035/viewer/2022062513/55635f17d8b42a5c598b4b8b/html5/thumbnails/26.jpg)
CANTIDADES DE
MALWARE
PROCESOS AUTOMATICOS
MALWARE VS
ANALISTA
![Page 27: DragonJAR TV Episodio 5 - Malware Edition](https://reader035.fdocuments.in/reader035/viewer/2022062513/55635f17d8b42a5c598b4b8b/html5/thumbnails/27.jpg)
Y MAS, Y MAS, Y MAS
….
![Page 28: DragonJAR TV Episodio 5 - Malware Edition](https://reader035.fdocuments.in/reader035/viewer/2022062513/55635f17d8b42a5c598b4b8b/html5/thumbnails/28.jpg)
![Page 29: DragonJAR TV Episodio 5 - Malware Edition](https://reader035.fdocuments.in/reader035/viewer/2022062513/55635f17d8b42a5c598b4b8b/html5/thumbnails/29.jpg)
![Page 30: DragonJAR TV Episodio 5 - Malware Edition](https://reader035.fdocuments.in/reader035/viewer/2022062513/55635f17d8b42a5c598b4b8b/html5/thumbnails/30.jpg)
![Page 31: DragonJAR TV Episodio 5 - Malware Edition](https://reader035.fdocuments.in/reader035/viewer/2022062513/55635f17d8b42a5c598b4b8b/html5/thumbnails/31.jpg)
MÁQUINA VIRTUALDEBUGURL’S
DINÁMICAS
TIMMING
![Page 32: DragonJAR TV Episodio 5 - Malware Edition](https://reader035.fdocuments.in/reader035/viewer/2022062513/55635f17d8b42a5c598b4b8b/html5/thumbnails/32.jpg)
![Page 33: DragonJAR TV Episodio 5 - Malware Edition](https://reader035.fdocuments.in/reader035/viewer/2022062513/55635f17d8b42a5c598b4b8b/html5/thumbnails/33.jpg)
PETICIÓNDNS
FALSATRÁFICO
MANIPULADO
![Page 34: DragonJAR TV Episodio 5 - Malware Edition](https://reader035.fdocuments.in/reader035/viewer/2022062513/55635f17d8b42a5c598b4b8b/html5/thumbnails/34.jpg)
• La muestra, dependiendo en algunos casos, del año, el día etc.. Generará un dominio
en base a un algoritmo.
![Page 35: DragonJAR TV Episodio 5 - Malware Edition](https://reader035.fdocuments.in/reader035/viewer/2022062513/55635f17d8b42a5c598b4b8b/html5/thumbnails/35.jpg)
USER AGENTS
SISTEMAS OPERATIV
OS
![Page 36: DragonJAR TV Episodio 5 - Malware Edition](https://reader035.fdocuments.in/reader035/viewer/2022062513/55635f17d8b42a5c598b4b8b/html5/thumbnails/36.jpg)
![Page 37: DragonJAR TV Episodio 5 - Malware Edition](https://reader035.fdocuments.in/reader035/viewer/2022062513/55635f17d8b42a5c598b4b8b/html5/thumbnails/37.jpg)
![Page 38: DragonJAR TV Episodio 5 - Malware Edition](https://reader035.fdocuments.in/reader035/viewer/2022062513/55635f17d8b42a5c598b4b8b/html5/thumbnails/38.jpg)
![Page 39: DragonJAR TV Episodio 5 - Malware Edition](https://reader035.fdocuments.in/reader035/viewer/2022062513/55635f17d8b42a5c598b4b8b/html5/thumbnails/39.jpg)
CÓDIGOS OFUSCADOSINTERACTÚA
N CON LA BANCA
![Page 40: DragonJAR TV Episodio 5 - Malware Edition](https://reader035.fdocuments.in/reader035/viewer/2022062513/55635f17d8b42a5c598b4b8b/html5/thumbnails/40.jpg)
EVOLUCIÓN EN EL
ROBO DE DINERO
![Page 41: DragonJAR TV Episodio 5 - Malware Edition](https://reader035.fdocuments.in/reader035/viewer/2022062513/55635f17d8b42a5c598b4b8b/html5/thumbnails/41.jpg)
MULEROS 2.0
![Page 42: DragonJAR TV Episodio 5 - Malware Edition](https://reader035.fdocuments.in/reader035/viewer/2022062513/55635f17d8b42a5c598b4b8b/html5/thumbnails/42.jpg)
INFRAESTRUCTURAS COMPROMETIDAS
![Page 43: DragonJAR TV Episodio 5 - Malware Edition](https://reader035.fdocuments.in/reader035/viewer/2022062513/55635f17d8b42a5c598b4b8b/html5/thumbnails/43.jpg)
INGENIERÍA SOCIAL EN
LAS INYECCIONE
S
USAN MAS DE UN
SERVIDOR
![Page 44: DragonJAR TV Episodio 5 - Malware Edition](https://reader035.fdocuments.in/reader035/viewer/2022062513/55635f17d8b42a5c598b4b8b/html5/thumbnails/44.jpg)
![Page 45: DragonJAR TV Episodio 5 - Malware Edition](https://reader035.fdocuments.in/reader035/viewer/2022062513/55635f17d8b42a5c598b4b8b/html5/thumbnails/45.jpg)
![Page 46: DragonJAR TV Episodio 5 - Malware Edition](https://reader035.fdocuments.in/reader035/viewer/2022062513/55635f17d8b42a5c598b4b8b/html5/thumbnails/46.jpg)
![Page 47: DragonJAR TV Episodio 5 - Malware Edition](https://reader035.fdocuments.in/reader035/viewer/2022062513/55635f17d8b42a5c598b4b8b/html5/thumbnails/47.jpg)
![Page 48: DragonJAR TV Episodio 5 - Malware Edition](https://reader035.fdocuments.in/reader035/viewer/2022062513/55635f17d8b42a5c598b4b8b/html5/thumbnails/48.jpg)
¿PREGUNTAS?