Silent RIFLE: How to take control of all your information systems
Contents
How take control of All your Systems
Silent RIFLE : Response Against Advanced Threat
HackCon : The Norwegian Cyber Security Convention
HackCon : The Norwegian Cyber Security Convention
#About Me
Kyoung-Ju Kwak (郭炅周)
Manager, Threat Analysis Team
Currently working on FSI (Financial Security Institute) Threat Analysis Team
=> FSI (Financial Security Institute, Public Company) covers 200 financial companies in South Korea
Currently, Member of National Police Agency Cyber-Crime & Threat Intelligence Advisory Committee
Minister of Interior's Excellence Award, National Cyber Security Awards 2016
Highlighted Talks
1. The Case study of Incidents in Korea Financial Sector, International Symposium on Cyber Crime Response, 2014
2. Financial Security, Whitehat Contest, 2015
3. Ransomware Overview, SungKyunKwan University, 2016
4. The New Wave of CyberTerror in Korea Financial Sector, PACSEC Tokyo, 2016
5. Fly me to the BLACKMOON, HITCON Taiwan, 2016
6. Kaspersky SAS (Security Analyst Summit, St.Maarten), 2017 (TBE)
HackCon : The Norwegian Cyber Security Convention
CONTENTS
01. Background Knowledge
02. RIFLE Campaign
03. Correlation Analysis
04. Summary & Conclusion
HackCon : The Norwegian Cyber Security …
Silent RIFLE : Response Against Advanced Threat
HackCon : The Norwegian Cyber Security Convention
HackCon : The Norwegian Cyber Security Convention
#About Me
Kyoung-Ju Kwak (郭炅周)
Manager, Threat Analysis Team
Currently working on FSI (Financial Security Institute) Threat Analysis Team
=> FSI (Financial Security Institute, Public Company) covers 200 financial companies in South Korea
Currently, Member of National Police Agency Cyber-Crime & Threat Intelligence Advisory Committee
Minister of Interior's Excellence Award, National Cyber Security Awards 2016
Highlighted Talks
1. The Case study of Incidents in Korea Financial Sector, International Symposium on Cyber Crime Response, 2014
2. Financial Security, Whitehat Contest, 2015
3. Ransomware Overview, SungKyunKwan University, 2016
4. The New Wave of CyberTerror in Korea Financial Sector, PACSEC Tokyo, 2016
5. Fly me to the BLACKMOON, HITCON Taiwan, 2016
6. Kaspersky SAS (Security Analyst Summit, St.Maarten), 2017 (TBE)
HackCon : The Norwegian Cyber Security Convention
CONTENTS
01. Background Knowledge
02. RIFLE Campaign
03. Correlation Analysis
04. Summary & Conclusion
HackCon : The Norwegian Cyber Security …
IoC
124.139.210.45
158.69.115.115
165.194.117.35
165.194.123.67
175.117.144.67
192.99.223.115
203.241.248.108
275B7AF66726950A895FBD74C6227CAB
33E09CF92DD8AB4F75DAC20E088A5709
5CA4562A5BFA15417707D3168161CB23
62FDF4822431D4C82B78E602AB3558AD
741FADDA07D9C2E41D6D8B0F2E91BC5E
A1F92B84614D7F07AB84C7A97675B299
BB710DB1C03EBC4F8D6EBB8B8577EE78
C2A171716FF72B8C8965DFB3CD3ECCFF
ECA2DFAA11ED41F119346E333B5D8461
EE778BE503FDA770EE2F40E51EDFD595
http://158.69.115.115/help.php
158.69.115.115
165.194.117.35
165.194.123.67
175.117.144.67
192.99.223.115
203.241.248.108
275B7AF66726950A895FBD74C6227CAB
33E09CF92DD8AB4F75DAC20E088A5709
5CA4562A5BFA15417707D3168161CB23
62FDF4822431D4C82B78E602AB3558AD
741FADDA07D9C2E41D6D8B0F2E91BC5E
A1F92B84614D7F07AB84C7A97675B299
BB710DB1C03EBC4F8D6EBB8B8577EE78
C2A171716FF72B8C8965DFB3CD3ECCFF
ECA2DFAA11ED41F119346E333B5D8461
EE778BE503FDA770EE2F40E51EDFD595
http://158.69.115.115/help.php