This document summarizes the ID-CERT malware lab report and plans for 2016. It discusses the team members of the malware lab and their plans to conduct malware surveys, develop an Android malware scanner called Androscanner, create a malware wiki, issue malware advisories, and build an ID Malware Scanner with local antivirus companies. Key findings from the 2015 malware survey are also summarized, such as the top reported malware and trends seen targeting government websites, Android, and ransomware.

1. lwww.cert.or.id/
Lab Malware Report
Setia Juli Irzal Ismail
ID–CERT

2. Lab Malware

3. Team Member
lAries Syamsuddin - Pemda Blitar
lAbdul Rahim - Pemkot Cirebon
lArya Dhanang - ITB
lAnggi Elanda - STMIK Rosma Karawang
lSetia Juli Irzal Ismail - Telkom University
lSamuel Cahyawijaya - ITB
lHadi Rasyid Rono - ITB
lLastono - ITB
lDavid Setiadi - STMIK Sumedang

4. Rencana Kerja ID-CERT 2016
§ Survey Malware
§ Androscanner
§ Malware Wiki
§ Malware Advisory
§ ID Malware Scanner
lwww.cert.or.id/

5. Survey Malware
lData trend malware di Indonesia
lFlash disk
lEngine Parser
l24 kota 9 propinsi
l379 jenis malware
lwww.cert.or.id/media/files/survey_malware_report.pdf

7. Daftar Kota
lCirebon, Bandung, Banjarbaru
lLampung, Magelang, Cianjur
lSidoarjo, Malang, Bogor, Depok
lMakasar,Bekasi, Tangerang, Sukabumi
lBali, Kuningan, Tulungagung, Mandailing natal,
lJakarta, Medan, Surabaya, Palu, Sumedang
lwww.cert.or.id/media/files/survey_malware_report.pdf

8. Malware
l42 Jenis Trojan
l24 Jenis Adware
lVirus,
lWorm,
lKeylogger
lbackdoor
lwww.cert.or.id/media/files/survey_malware_report.pdf

9. Statistik Malware
lMalware paling banyak dilaporkan:
• Aplication.InstallAd(A) – 52 kali tipe Adware
• Trace.AdvancedArchivePasswordRecovery4.1(
A) – 50 kali Tipe trojan
• Application.Bundler.Somoto.I(B) sebanyak 46
kali. Tipe Adware
lwww.cert.or.id/media/files/survey_malware_report.pdf

10. Survey Malware - 2016
lUpgrade AV Engine
lUpgrade Parsing Engine
lPartisipasi kota dan propinsi
lhttp://www.cert.or.id/index-berita/en/berita/49/

11. Androscanner
lwww.androscanner.com

12. Androscanner
lMalware Scanner
lAndroid
lAPK
lwww.androscanner.com
Androscanner.com

13. Androscanner - 2016
lAlgoritma Scanning
lDatabase Malware
lwww.androscanner.com

14. Malware Wiki

15. Malware Wiki - 2016
lDevelop
lContent
lPlatform
lKomunitas

16. Malware Advisory
lPeringatan kerentanan
lMalware
lBerkala
lAnalisa malware
lwww.cert.or.id/

17. ID MALWARE SCANNER
• Malware Summit 2015
• Komunitas Anti Virus Lokal Indonesia
• Vaksin, Smadav, PCMAV, Indosky, SpensAV,
Infaltech, Inpag
• Kolaborasi
• Sebuah layanan malware scanner

18. ID MALWARE SCANNER

19. ID MALWARE SCANNER

20. Top 5 Malware Indonesia2015
lRamnit
lSality
lVirut
lZeus
lGamarue

21. Trend Malware 2015
lInsiden website pemerintahan & sekolah
lZeus – Sinkronisasi Token
lSosmed – Gadis Mabuk - Kilim
lRansomware – Cryptolocker
lAndroid

22. Contact
ljul@tass.telkomuniversity.ac.id
lTw: @jul_ismail
lFB: jul.ismail
ljulismail.staff.telkomuniversity.ac.id/

23. Hatur Nuhun