Mercedes Andreacchi is a cybersecurity analyst and Air Force veteran. Her background includes threat hunting, incident response, endpoint remediations, and malware triage and analysis. In her free time, she enjoys spending quality time with her spouse and fur kids, and also reading and researching malware.
Phishing continues to be one of the primary ways threat actors successfully deliver malicious code to unsuspecting victims. Very often, the file containing the ill-intended content is a Microsoft Excel file. The presentation will delve into initial triage of two malicious Excel files, followed by more technical deep dive into what "badness" the files contain and how to extract indicators of compromise that can benefit the greater community.