Solarmarker, Part II: A Security Analyst’s Perspective and Live Analysis

Presented by

Adam Boretos and Nick Cavalancia

About this talk

Join Rapid7 for this on-demand webcast focused on Solarmarker malware. In this webcast, Rapid7 Detection & Response Analyst, Adam Boretos and UIS' Nick Cavalancia will walk attendees through a deep-dive of: the current use of banking trojans like Solarmarker, the type and value of the information stolen, how these latter-stage attack methods align with MITRE, Solarmarker’s C2 communications, and a live modified version of the Solarmarker DLL in a debugger and running it through the TOR network to the C2 to see command being sent to the dropper. Adam will then turn the focus to the Jupyter Infostealer module within Solarmarker, providing a real-world look at: how Jupyter attempts to steal credentials stored within the browser and how it exfiltrates browser data over the C2 communications channel. Register to watch now!
Related topics:

More from this channel

Upcoming talks (25)
On-demand talks (615)
Subscribers (53518)
Rapid7 is creating a more secure digital future for all by helping organizations strengthen their security programs in the face of accelerating digital transformation. Our portfolio of best-in-class solutions empowers security professionals to manage risk and eliminate threats across the entire threat landscape from apps to the cloud to traditional infrastructure to the dark web. We foster open source communities and cutting-edge research–using these insights to optimize our products and arm the global security community with the latest in attackers methods. Trusted by more than 10,000 customers worldwide, our industry-leading solutions and services help businesses stay ahead of attackers, ahead of the competition, and future-ready for what’s next.