Download - Persentasi Mas Win Tools
![Page 1: Persentasi Mas Win Tools](https://reader036.vdocument.in/reader036/viewer/2022062823/5873b76d1a28abbc788b4bcb/html5/thumbnails/1.jpg)
6th ICR and ID-SIRTII Research Seminar
MasWin ToolsMalware Analysis Windows
ToolsPadma Hotel - Bali
23 September 2015
![Page 2: Persentasi Mas Win Tools](https://reader036.vdocument.in/reader036/viewer/2022062823/5873b76d1a28abbc788b4bcb/html5/thumbnails/2.jpg)
Ravindo Tower 17th floorKebon Sirih No. 75 Central Jakarta 10340 - IndonesiaP: +62 21 3192 5551 / [email protected]
Android Malware Operating System
M. Lutfi Sahlan (Malware
Analyst)Research & Development
Dept.Id-SIRTII/CC
M. Ali Syarief (Malware Analyst)Research &
Development Dept.Id-SIRTII/CC
Id-SIRTII/CC is Indonesia National Computer Emergency Response Team
OUR AIMS To support a good environment on Internet infrastructure in the
country
To improve Internet security and encourage legal e-transactions in Indonesia.
Ali Syarief(Malware Analyst)Research & Development
Dept.Id-SIRTII/CC
Andre Nurhanggoro ( Simulation Lab )
Research & Development Dept.Id-SIRTII/CC
![Page 3: Persentasi Mas Win Tools](https://reader036.vdocument.in/reader036/viewer/2022062823/5873b76d1a28abbc788b4bcb/html5/thumbnails/3.jpg)
OVERVIEW
![Page 4: Persentasi Mas Win Tools](https://reader036.vdocument.in/reader036/viewer/2022062823/5873b76d1a28abbc788b4bcb/html5/thumbnails/4.jpg)
![Page 5: Persentasi Mas Win Tools](https://reader036.vdocument.in/reader036/viewer/2022062823/5873b76d1a28abbc788b4bcb/html5/thumbnails/5.jpg)
![Page 6: Persentasi Mas Win Tools](https://reader036.vdocument.in/reader036/viewer/2022062823/5873b76d1a28abbc788b4bcb/html5/thumbnails/6.jpg)
![Page 7: Persentasi Mas Win Tools](https://reader036.vdocument.in/reader036/viewer/2022062823/5873b76d1a28abbc788b4bcb/html5/thumbnails/7.jpg)
A software which is designed to infiltrate a computer system
without the owner’s informed consent
Malware
MALicious softWARE
![Page 8: Persentasi Mas Win Tools](https://reader036.vdocument.in/reader036/viewer/2022062823/5873b76d1a28abbc788b4bcb/html5/thumbnails/8.jpg)
Ravindo Tower 17th floorKebon Sirih No. 75 Central Jakarta 10340 - IndonesiaP: +62 21 3192 5551 / [email protected]
THE EVOLUTION OF MALWARE
![Page 9: Persentasi Mas Win Tools](https://reader036.vdocument.in/reader036/viewer/2022062823/5873b76d1a28abbc788b4bcb/html5/thumbnails/9.jpg)
Category DESCRIPTION
MALWARE CATEGORY
![Page 10: Persentasi Mas Win Tools](https://reader036.vdocument.in/reader036/viewer/2022062823/5873b76d1a28abbc788b4bcb/html5/thumbnails/10.jpg)
![Page 11: Persentasi Mas Win Tools](https://reader036.vdocument.in/reader036/viewer/2022062823/5873b76d1a28abbc788b4bcb/html5/thumbnails/11.jpg)
![Page 12: Persentasi Mas Win Tools](https://reader036.vdocument.in/reader036/viewer/2022062823/5873b76d1a28abbc788b4bcb/html5/thumbnails/12.jpg)
Ravindo Tower 17th floorKebon Sirih No. 75 Central Jakarta 10340 - IndonesiaP: +62 21 3192 5551 / [email protected] / www.idsirtii.or.id
Workflow Lab Malware ID-SIRTII/CC
![Page 13: Persentasi Mas Win Tools](https://reader036.vdocument.in/reader036/viewer/2022062823/5873b76d1a28abbc788b4bcb/html5/thumbnails/13.jpg)
Why Analysis MalwareIncident Response
Vulnerability
Attack trends and Threat Evaluation
Penetration Test
Computer Forensics
Find New signature
![Page 14: Persentasi Mas Win Tools](https://reader036.vdocument.in/reader036/viewer/2022062823/5873b76d1a28abbc788b4bcb/html5/thumbnails/14.jpg)
regedit
ATTACK AREAWINDOWS
![Page 15: Persentasi Mas Win Tools](https://reader036.vdocument.in/reader036/viewer/2022062823/5873b76d1a28abbc788b4bcb/html5/thumbnails/15.jpg)
![Page 16: Persentasi Mas Win Tools](https://reader036.vdocument.in/reader036/viewer/2022062823/5873b76d1a28abbc788b4bcb/html5/thumbnails/16.jpg)
Surface AnalysisTrIDCFF ExplorerBinText
Runtime AnalysisRegshotPE & PM
Wireshark
Static AnalysisOllyDbg
IDA Pro
Runtime AnalysisRegshotPE & PM
Wireshark
![Page 17: Persentasi Mas Win Tools](https://reader036.vdocument.in/reader036/viewer/2022062823/5873b76d1a28abbc788b4bcb/html5/thumbnails/17.jpg)
Surface - RUNTIME- Static
![Page 18: Persentasi Mas Win Tools](https://reader036.vdocument.in/reader036/viewer/2022062823/5873b76d1a28abbc788b4bcb/html5/thumbnails/18.jpg)
![Page 19: Persentasi Mas Win Tools](https://reader036.vdocument.in/reader036/viewer/2022062823/5873b76d1a28abbc788b4bcb/html5/thumbnails/19.jpg)
![Page 20: Persentasi Mas Win Tools](https://reader036.vdocument.in/reader036/viewer/2022062823/5873b76d1a28abbc788b4bcb/html5/thumbnails/20.jpg)
DEMOVIDEO
![Page 21: Persentasi Mas Win Tools](https://reader036.vdocument.in/reader036/viewer/2022062823/5873b76d1a28abbc788b4bcb/html5/thumbnails/21.jpg)