Resource types: Webinar

SANS Product Review: VMRay Analyzer, agentless malware analysis and rapid incident response.

Watch the VMRay team take a deeper look at the techniques malware authors use to evade automated dynamic analysis, and what steps can be taken for organizations to restore hope in their defenses.

Listen to CEO Carsten Willems talk about VMRay's expanding advanced threat detection capabilities (ATD) on the Risky Business Podcast.

VMRay's Sr. Threat Researcher Tamas Boczan & SANS Analyst, Jake Williams, dissect the techniques used to execute kernel-mode code and bypass existing OS security controls.

Watch the VMRay team take a deeper look at the techniques malware authors use to evade automated dynamic analysis, and what steps can be taken for organizations to restore hope in their defenses.

Manual interaction allows incident response teams to scrutinize suspect files, URLs, and snippets of code that have either raised a cautionary flag or completely evaded detection by automated methods. In manual mode, analysts can directly interact with suspicious samples.

In this analysis, the VMRay Labs Team examines the behavior of Rhino Ransomware (first identified in April 2020). This sample was found by Twitter user @GrujaRS on May 4th.

In this Malware Analysis Spotlight, the VMRay Labs Team will examine Paymen45 Ransomware, a new ransomware strain first identified around April 2020. For this analysis, we will analyze a sample of Paymen45 Ransomware first seen in the wild on May 11th, 2020.

Watch SANS Analyst, Jake Williams and Sr. Threat Analyst Tamas Boczan dissect living off the land techniques.

Learn practical malware family identification techniques from SANS Analyst, Jake Williams and Sr. Threat Analyst Tamas Boczan.