Fighting Fileless Malware

Wednesday, 24 May 2017 11:00AM EDT (24 May 2017 15:00 UTC)
Speaker: Sanat Chugh

The Russian Kovter gang is the creator and operator of one of the world's most impactful and prolific fileless malware and botnet attack. The Kovter fileless malware is able to gain full control and long term persistence over victim machines, while operating fully out of memory, and without any files being dropped onto the file system, helping it evade most security tools.

Sanat Chugh, Researcher, at Cybereason will explain the Kovter fileless malware and its variants and present techniques organization can use to hunt, detect, and respond to these attacks.

In this webcast, you will:

Learn about fileless malware, such as powershell and other windows built-in scripting engines, and how they are leveraged by attackers to gain stealth and persistence
Learn how to detect and respond to these types of attacks

Login to Register

Related Content

DFIR - Blog - Women In Russian-speaking Cybercrime_340 x 340.jpg

Digital Forensics, Incident Response & Threat Hunting

November 18, 2024

Women In Russian-Speaking Cybercrime: Mythical Creatures or Significant Members of Underground?

Women’s roles in Russian-speaking cybercrime, though less visible than men’s, are evolving and significant.

Anastasia Sentsova

Anastasia Sentsova

DFIR - Blog - New FOR518- Mac and iOS Forensic Analysis Poster Update_340 x 340.jpg

Digital Forensics, Incident Response & Threat Hunting

November 11, 2024

New FOR518: Mac and iOS Forensic Analysis Poster Update

The latest updates to the Digital Forensics and Incident Response Poster bring a wealth of new sections and enhancements.

Cybersecurity Insights, Digital Forensics, Incident Response & Threat Hunting, Cyber Defense, Cloud Security, Open-Source Intelligence (OSINT), Cybersecurity Leadership, Security Awareness, Artificial Intelligence (AI)

December 18, 2023

Top 15 SANS Summit Talks of 2023

This year, SANS hosted 16 Summits with 209 talks. Here were the top-rated talks of the year.