Career News

April 26, 2021

Thinking Outside The Box For Deep Dive Analyses

Thinking Outside The Box For Deep Dive Analyses

Digital forensics is the discipline of identifying, acquiring, analyzing, preserving and reporting on the results of an investigation of digital media, on items such as computers, mobile devices, and Internet of Things (IoT) devices. With computer crime being so prolific, the United States requires these digital professionals now more than ever. Peraton employs some of the industry’s leading digital forensic analysts and malware reverse engineers.

Peraton understands the need to develop new methods for acquiring data from obscure devices and sources. Peraton subject matter experts work closely with customers, subcontractors, and other trusted partners to address emerging needs. Additionally, Peraton has developed over a dozen independent research and development (IRAD) projects to help with the challenges of the ever-ubiquitous spread of cyber-related malevolence.

Peraton offers the most comprehensive Digital Multimedia (D/MM) forensic services. Our employees have the knowledge, skills, and abilities to extract and analyze data from non-traditional digital media. They provide solutions that enable investigators to identify, acquire, and analyze critical information stored within disparate devices, including vehicle systems, to uncover key evidence to determine what happened, where it occurred, and who was involved.

Tech savvy criminals use encryption and other anti-forensic techniques to hide data, obfuscate incriminating evidence, or attempt to slow down investigators during investigations. Peraton continually develops new tactics, techniques, and procedures (TTP) to defeat these attempts.

“Working a case is a lot like putting together a large puzzle — each piece of the puzzle is a different artifact on the system and as you find the pieces that fit together, the overall picture of what happened on the device emerges. The picture builds the narrative, based solely on the facts and data present on the device,” said Jessica S., a Peraton digital forensics analyst.

Peraton engineers are constantly innovating and creating custom solutions to solve unique problems.

For example, two Peraton solutions have enhanced the digital evidence investigative process to be both faster and more thorough: a proprietary automated malware analysis system and the use of K9s for electronic evidence detection.

Peraton’s automated malware analysis system uses an extensive combination of dynamic and static analysis tools — including sandbox technologies, antivirus solutions and string decoders — to analyze suspected malware samples and quickly return technical information to users to enable understanding of the functionality of the samples. The technology also enables the correlation of samples and provides a trusted venue in which to analyze, study, and collaborate on malware threats, providing robust capabilities for automated and scaled analysis.

“Our automated malware analysis system is constantly evolving,” said Paul N., a Peraton senior digital forensic analyst. “Our goal is to remain ahead of the adversaries.”

Another one of Peraton’s innovative solutions involves specially trained K9s who can detect hidden electronic evidence associated with law enforcement/counterintelligence (LE/CI) investigations, major crime scenes, and other facilities where electronic storage devices are prohibited or suspected of being hidden. Multiple use cases relating to law enforcement, cybersecurity, and national security missions show the value of offering this capability to organizations like the Department of Defense Cyber Crime Center (DC3) and its mission partners.

The electronic storage device (ESD) detection K9s enhance external engagement support during the search and collection of digital evidence during investigations. Reports state that in 25% of crime scenes where ESD K9s were used, hidden electronic evidence overlooked by human search attempts were located. These K9s have contributed to success in law enforcement investigations and have received national attention.

Peraton uses advanced and expert level forensic methods, such as chip-off, JTAG, encryption bypass techniques, and the replacement or repair of hardware. Peraton’s Annapolis Junction, Maryland facility has an X-ray machine for examining the contents of mail, packages of unknown content, electronic devices, and any other digital evidence for which the internal content must be examined without physical dismantling the item.

Peraton’s subject matter experts are engaging daily in missions of consequence.

“Performing deep-dive digital forensics has been a rewarding experience for me,” said Eric D., a Peraton senior digital forensic analyst. “Through the course of analysis during a case, I was able to uncover artifacts from a child predator’s mobile devices and testify as an expert witness that not only helped secure a conviction with a multi-decade sentence, but also identify additional victims that were able to be rescued by law enforcement.”

Learn more about Peraton’s digital forensics capabilities »

Learn more about peraton