With many organizations using a sandbox to detonate suspicious files, many threats are implementing logic to detect sandbox environments, to alter their behavior and evade detection. This talk will highlight many real-world evasion tactics employed by recent malware, discussing challenges in measuring evasive behaviors and offering insights to improving the effectiveness of the sandbox.
Speaker: Michael Wood
Michael Wood has been in cybersecurity industry for nearly 10 years with Sophos. He currently manages the Dynamic Protection team of threat researchers in SophosLabs, which focus on developing behavior and memory-based protection for malware. Prior to that, Wood worked as a Threat Researcher at Sophos, specializing in Windows rootkits. He holds a master’s degree in computer science from the University of British Columbia.
Detailed Presentation:
Comments