Red Stealer is a blue team lab that falls under the Threat Intel category and will cover the following subjects: MalwareBazaar, Whois, ThreatFox, ANY.RUN, VirusTotal, Execution, Persistence, Privilege Escalation, Defense Evasion, Discovery, Collection, Impact.
Learning Objectives
Analyze a suspicious executable using VirusTotal and MalwareBazaar to extract IOCs, identify C2 infrastructure, MITRE ATT&CK techniques, and privilege escalation mechanisms.