Season 1 · Episode 30

EP30 Malware Hunting with VirusTotal

Cloud Security Podcast by Google · Anton A Chuvakin

September 7, 202126m 19s

Audio is streamed directly from the publisher (traffic.libsyn.com) as published in their RSS feed. Play Podcasts does not host this file. Rights-holders can request removal through the copyright & takedown page.

Original episode page

Show Notes

Guest:

Vicente Diaz, Threat Intelligence Strategist @ VirusTotal

Topics:

How would you describe modern threat hunting process?
Share some of the more interesting examples of attacker activities or artifacts you've seen?
Do we even hunt for malware? What gets you more concerned, malware or human attackers?
How do you handle the risk of attackers knowing how you perform hunting?
What is the role of threat research role for hunting? Do you need research to hunt well?
Does threat research power attribution?
How do you tell a good YARA rule from a bad one, and a great one?
What's the evolutionary journey for a YARA rule?
What is your view on the future of hunting?

Resources:

YARA documentation
"Deep Thinking: Where Machine Intelligence Ends and Human Creativity Begins" by Gary Kasparov

← All episodes of Cloud Security Podcast by Google