Name: CurveBack: A Backdoor Analysis
Start: 2024-09-19T11:00:00+0200
End: 2024-09-19T12:00:00+0200

Thursday September 19, 2024 11:00 - 12:00 CEST

The evolution of China-nexus based backdoors the last decade has rapidly produced several families that have been documented in great detail. One of the latest additions to this order are SideWalk / ScrambleCross which employ challenging techniques and are difficult to detect without prior knowledge about their functionality. In the fall of 2023, the mnemonic Incident Response Team (mIRT) was engaged to uncover an attack as part of an esponiage campaign, and discovered a previously undocumented backdoor in the evolutional trail. Keeping track of the development of these malware families is essential for defenders. This talk shares the highlights from our analysis of the malware and reflections on how to detect it.

Speakers

Rafael Lukas Maers

Rafael Lukas Maers has a Master's degree in MathemaMcs and has worked in mnemonic since 2013. He began his cybersecurity career as an analyst, before he ventured into network analysis and developed a world-class decoder for an ICS/OT network protocol. In 2017, he started working as... Read More →

Stian Jahr

Stian Jahr holds a Master’s degree in InformaMon Security and has been part of mnemonic’s Managed Security Services since 2006. He has played a central role in the formaMon and technical management of mnemonic’s Security Services, where he has been focusing on network analysis... Read More →

Thursday September 19, 2024 11:00 - 12:00 CEST
01. Gouden Carolus

Talk

BruCON 0x10

Rafael Lukas Maers

Stian Jahr

Attendees (2)

BruCON 0x10

Rafael Lukas Maers

Stian Jahr

Attendees (2)

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!