Expanded

Dridex Banking Trojan

This course will teach you about the tactics and techniques of one of the most sophisticated banking Trojans currently active, Dridex.
Course info
Level
Intermediate
Updated
May 11, 2021
Duration
1h 57m
Table of contents
Description
Course info
Level
Intermediate
Updated
May 11, 2021
Duration
1h 57m
Description

Cybersecurity is extremely crucial when it comes to staying ahead of the newest threats. In this course, Dridex Banking Trojan, you’ll learn all about the banking Trojan Dridex. First, you’ll explore how Dridex is delivered through phishing campaigns and social engineering and ways to prevent initial infections. Next, you’ll learn ways to detect Dridex on your networks. Finally, you’ll learn how to respond when you have discovered an active infection. When you’re finished with this course, you’ll have the skills and knowledge of Dridex needed to disrupt

About the author
About the author

Dr. Josh Stroschein is an Assistant Professor at Dakota State University where he teaches malware analysis, software exploitation, reverse engineering, and penetration testing. Josh also works as a malware analyst for Bromium, an end-point security company and is the Director of Training for the Open Information Security Foundation (OISF).

More from the author
Installing the Elastic Stack
Beginner
1h 30m
Aug 17, 2021
Network Analysis with Arkime
Intermediate
45m
Dec 11, 2020
More courses by Josh Stroschein
About the author

Aaron M. Rosenmund is a cyber security operations subject matter expert, with a background in federal and business defensive and offensive cyber operations and system automation.

More from the author
Getting Started in the Lab Environment
Intermediate
6m
Jun 30, 2021
Elastic Stack: Getting Started
Beginner
1h 41m
Feb 4, 2021
More courses by Aaron Rosenmund
Section Introduction Transcripts
Section Introduction Transcripts

Course Overview
Hey, humans! I'm Aaron Rosenmund, a full‑time author and researcher for security here at Pluralsight. ‑And I'm Josh Stroschein, an author on Pluralsight, associate professor of cybersecurity at Dakota State University, Director of Training and Outreach for the Open Information Security Foundation, and a part‑time threat researcher for Bromium. ‑And welcome to our course, Dridex Banking Trojan. ‑Dridex is a banking trojan that focuses on stealing banking information, but it's actually modular enough to bring in additional capabilities into the environment. We are going to look at how it spreads using macro‑enabled office documents, how it uses a vast network of compromised servers to deliver the payload, and investigate its uses of living‑off‑the‑land techniques for post infection activity. We'll focus on identifying important behaviors and indicators using both host and network data, and use tools such as Suricata, Arkime, and abuse.ch. ‑And we're going to take all of that information and pack it up into a nice little bundle and give it to you to use in every phase of how you do your job. Whether it's prevention, let's make sure it stops before it happens, or whether we're detecting it, hey, I don't know if it's happening, let's find out if it is, or if you do find it, what do you do to respond to it? And you want to know more? Want to know how to do that for Dridex in your environment? Of course you do! And that's why I really hope that you join us for this course, Dridex Banking Trojan, on Pluralsight.