Talos Takes
Talos Takes
Talos Takes·Jul 2, 2026·18m

From evasion to detection: A guide to analyzing COM-based threats

Show notes

While the Component Object Model (COM) is a fundamental Windows technology that allows software to communicate and function, it's also a powerful tool for threat actors looking to move laterally, maintain persistence, and evade traditional security measures.

Joining us is Vanya Svajcer, who shares his expertise on how to cut through the noise and identify malicious signals within COM-based binaries. Whether you are a seasoned researcher or just starting your journey into reverse engineering and malware analysis, here's some practical advice on how to start hunting for COM-based threats and making your next investigation a little more effective.

Vanja's blog: https://blog.talosintelligence.com/introduction-to-com-usage-by-windows-threats