Ethical Hacking - GAINING ACCESS(24)

CLIENT SIDE ATTACKS - Detecting Trojan manually or using a sandbox

Analyzing trojans

• Check the properties of the file.
  • 　　The file type of a trojan is application(.exe) , even if it looks like jpg\PDF or other files.
  • 

     

     

• Is it what it seems to be?
• 　　Check Network Performance
• 
• Reverse DNS check (https://remote.12dt.com/)
• Run the file in a virtual machine and check resources.
• Use an online Sandbox service(https://www.hybrid-analysis.com/)