Malware Analysis

I have taken up an interest in malware analysis over the past two or so years.

This interest led to an informal role as a malware analyst, giving me real-world experience.

I have analyzed and reveresed several samples, both professionally and personally. I was the only person at BSIDES Cache 2024 able to solve reverse enginnering/malware challenges.

Pracitcal Example

I have functioned as a malware analyst on several incident response engagements, from ransomware to trojans and cryptominers

I also hade the opportunity to give a guest lecture at Wichita State University, talking to the cybersecurity students about the basics of malware analysis and reverse engineering.

I'm limited on what information I can share, however, one of my favorite "war stories" came from an incident response case in which a client had been infected with ransomware by a group who had only been publicly known for one or two months. As I was searching the forensics data, I was able to locate two suspicious executables, which I determined to be the payloads. These were novel samples with no public research available, after analysis concluded I wrote a small paper disecting these samples. However, I was not able to share it do to the ongoing investigation. Unfortunately by the time I had recieved authorization to publish my research, larger cybersecurity firms had beat me to it.

Skills

• Ghidra
• GDB
• DotPeek
• Assembly