Home / Companies / Crowdstrike / Blog / Post Details
Content Deep Dive

Hiding in Plain Sight: Remediating “Hidden” Malware with Real Time Response

Blog post from Crowdstrike

Post Details
Company
Date Published
Author
Russian
Word Count
2,998
Company Posts That Month
Language
English
Hacker News Points
-
Post removed?
No
Summary

CrowdStrike's blog post offers an in-depth exploration of their approach to malware remediation, specifically addressing the Andromeda trojan's obfuscation techniques within USB devices. Through a detailed case study, it describes how the USB spreader plugin uses non-breaking space characters to conceal malicious files, complicating detection and removal processes. The post outlines effective use of PowerShell commands via CrowdStrike's Real Time Response (RTR) platform to identify, remove, and recover hidden malware without disrupting user operations. This method prevents lateral movement of malware across networks and reduces alert fatigue. CrowdStrike emphasizes the importance of tracking and monitoring USB device usage to mitigate security risks and highlights their Falcon Device Control feature as a tool for minimizing unauthorized device use, thereby safeguarding organizational environments from potential threats.

Trends Found in this Post
Trend Post Mentions Total Month Mentions Posts Companies MoM
Real-time 4 1,659 640 46 +203%
AI Agents 2 2,394 1,321 1 -
Zero Trust 1 1,843 1,331 3 +61333%
Use This Data

Use this post, company, and trend context to find content marketing opportunities, perform competitive analysis, or address product feature gaps via the Plushcap MCP server or the Plushcap API.