Securabit

SecuraBit Episode 61: Reverse Engineering Malware with a Spider Monkey Hosts: Christopher Mills – @thechrisam Andrew Borel –  @andrew_secbit Tim Krabec – @tkrabec http://www.SMBMinute.com Nicholas Berthaume -- @nberthaume https://www.bordergatewayprotocol.net Anthony Gartner – @anthonygartner http://anthonygartner.com Guests: Guest: Lenny Zeltser - @lennyzeltser http://zeltser.com/ General topics: Reverse Engineering Malware New Linux Distro to analyze malware REMnux: A Linux Distribution for Reverse-Engineering Malware http://zeltser.com/remnux/ Based on Ubuntu Released just 5 days ago - July 8, 2010 2500 Downloads so far VMWare appliance Live Distro going out to Source Forge soon Enlightenment as window manager, (no gnome or kde) Just what you need to do the analysis Lightweight as possible Tools Emulate Services Allow malware to interact with your own resources how does it differ from CW Sandbox Determine the signs of comprise to compare with your production environment JS Unpack Since it is an Ubuntu dist