Lastline Labs Blog

Exploit Analysis via Process Snapshotting

Posted by Lastline ON Jul 29, 2014

In this third post in our blog series on process snapshotting (see previous posts on PlugX and Shiz’ code injection),...

Dissecting Payload Injection Using LLama Process Snapshots

Posted by Lastline ON Jun 17, 2014

In our last blog-post on process snapshotting, we showed how process snapshots (or “dumps”) allow bridging the gap between dynamic...

An Analysis of PlugX Using Process Dumps from High-Resolution Malware Analysis

Posted by Lastline ON Jun 5, 2014

Targeted attacks and so-called APTs (advanced persistent threats) come in many forms and colors. Very often, in-house malware analysis teams...

Analyzing an “Ultra-Advanced APT Tool” Using High-Resolution Dynamic Analysis

Posted by Clemens Kolbitsch ON May 30, 2014

Every AV I've tested is helpless against Violent Python attacks; the only good defense I've found is...

Detecting Keyloggers on Dynamic Analysis Systems

Posted by Clemens Kolbitsch ON May 28, 2014

Authored by: Kevin Hamacher, Dario Filho, Clemens Kolbitsch One notorious functionality present in many variants of today’s advanced malware is the ability...

Antivirus Isn’t Dead, It Just Can’t Keep Up

Posted by Giovanni Vigna ON May 21, 2014

Much has been said in recent weeks about the state of antivirus technology. To add facts to the debate, Lastline...

Analyzing a banking Trojan

Posted by Lastline ON Apr 17, 2014

In our effort to detect threats to the users of Android devices, we analyze a lot of malicious apps. This...

A Pipeline for Scalable Analysis Capability

Posted by Lastline ON Apr 16, 2014

An area where we spend quite some effort here at Lastline is scaling up our malware analysis capabilities, that is...

How To Build An Effective Malware Analysis Sandbox

Posted by Dr. Christopher Kruegel ON Mar 27, 2014

Automated malware analysis systems (or sandboxes) are one of the latest weapons in the arsenal of security vendors. Such systems...

Lastline employees involved in top-tier Android research

Posted by Lastline ON Mar 20, 2014

Researchers from UCSB and University of Bonn recently published a paper on the risks incurred by dynamically loaded external...

Lastline Labs Blog

Exploit Analysis via Process Snapshotting

Dissecting Payload Injection Using LLama Process Snapshots

An Analysis of PlugX Using Process Dumps from High-Resolution Malware Analysis

Analyzing an “Ultra-Advanced APT Tool” Using High-Resolution Dynamic Analysis

Detecting Keyloggers on Dynamic Analysis Systems

Antivirus Isn’t Dead, It Just Can’t Keep Up

Analyzing a banking Trojan

A Pipeline for Scalable Analysis Capability

How To Build An Effective Malware Analysis Sandbox

Lastline employees involved in top-tier Android research

Lastline to be Acquired by VMware

The Importance of Security Software Integrations and How They Influence Purchase Decisions

Evolution of Excel 4.0 Macro Weaponization

LATEST PRESS RELEASES

Lastline Boosts SOC Efficiency by 100%, Effectively Doubling Productivity of SOC Teams

MEDIA MENTIONS

Coronavirus-Themed Phishing Fears Largely Overblown, Researchers Say

FROM THE BLOG

Lastline to be Acquired by VMware