The Sample: RC4 the Hard Way, a Tale of WHITEDAGGERS

Presented by

Blaine Stancill, Principal Reverse Engineer, Research & Engineering - Mandiant Advantage Labs

About this talk

In The Sample FLARE analysts present stories of notable malware samples they have reverse engineered. The FLARE team studies hundreds of malware samples each month and here they share highlights of real-world malware and analysis techniques. These talks aim to educate and entertain technical and non-technical attendees alike. Register Now to join Blaine Stancill of the FLARE team as he explains the inner workings of a dropper from the WHITEDAGGER malware family. This talk covers: • WHITEDAGGER’s unusual way of implementing the common RC4 encryption algorithm. • An easier method for implementing the encryption algorithm. • How to hunt for additional WHITEDAGGER samples. • An overview of infection chains stemming from WHITEDAGGER.
Related topics:

More from this channel

Upcoming talks (2)
On-demand talks (372)
Subscribers (122613)
Mandiant is a recognized leader in dynamic cyber defense, threat intelligence and incident response services. By scaling decades of frontline experience, Mandiant helps organizations to be confident in their readiness to defend against and respond to cyber threats. Mandiant is now part of Google Cloud.