{
	"id": "efaa5802-db57-4c0c-9f9d-c1024a2113de",
	"created_at": "2026-04-06T00:07:25.172698Z",
	"updated_at": "2026-04-10T03:21:08.828898Z",
	"deleted_at": null,
	"sha1_hash": "98875fd1510bf00ee45acec77614761cbe482463",
	"title": "The Sample: Beating the Malware Piñata",
	"llm_title": "",
	"authors": "",
	"file_creation_date": "0001-01-01T00:00:00Z",
	"file_modification_date": "0001-01-01T00:00:00Z",
	"file_size": 90951,
	"plain_text": "The Sample: Beating the Malware Piñata\r\nPublished: 2022-05-05 · Archived: 2026-04-05 16:27:37 UTC\r\nPresented by\r\nChristopher Gardner, Principal Reverse Engineer • R\u0026E - Mandiant Advantage Labs\r\nAbout this talk\r\nIn The Sample FLARE analysts present stories of notable malware samples they have reverse engineered. The\r\nFLARE team studies hundreds of malware samples each month and here they share highlights of real-world\r\nmalware and analysis techniques. These talks aim to educate and entertain technical and non-technical attendees\r\nalike. In this first iteration, join Chris Gardner of the FLARE team as he examines the malware gift that keeps on\r\ngiving. Even after politely asking it to stop. This talk covers: - How to analyze droppers that just won’t stop\r\ndropping more PE files. - How to extract new payloads when a sample performs process injection. - Why open-source intelligence is both beautiful and dangerous. - What analysis tricks reduced analysis time to a mere 45\r\nhours.\r\nMandiant | Intelligence and Expertise\r\nMandiant | Intelligence and Expertise\r\n180748 subscribers161 talks\r\nhttps://www.brighttalk.com/webcast/7451/538775\r\nPage 1 of 2\n\nMake Google part of your security team\r\nMandiant is a recognized leader in dynamic cyber defense, threat\r\nintelligence and incident response services. By scaling decades of front…\r\nSource: https://www.brighttalk.com/webcast/7451/538775\r\nhttps://www.brighttalk.com/webcast/7451/538775\r\nPage 2 of 2",
	"extraction_quality": 1,
	"language": "EN",
	"sources": [
		"Malpedia"
	],
	"references": [
		"https://www.brighttalk.com/webcast/7451/538775"
	],
	"report_names": [
		"538775"
	],
	"threat_actors": [],
	"ts_created_at": 1775434045,
	"ts_updated_at": 1775791268,
	"ts_creation_date": 0,
	"ts_modification_date": 0,
	"files": {
		"pdf": "https://archive.orkl.eu/98875fd1510bf00ee45acec77614761cbe482463.pdf",
		"text": "https://archive.orkl.eu/98875fd1510bf00ee45acec77614761cbe482463.txt",
		"img": "https://archive.orkl.eu/98875fd1510bf00ee45acec77614761cbe482463.jpg"
	}
}