Sagar Bade
Pune
Summary
Security researcher with 6+ years in malware analysis and cyber threat research. Expertise in reverse engineering, malware hunting, and detection engineering. Proficient in x86 assembly, Windows internals, and programming in C/C++/Python. Contributor to technical publications on malware techniques and detection strategies.
Overview
7
7
years of professional experience
1
1
Certification
Work History
Security Researcher
Trellix
Bangalore
08.2022 - Current
- Analyzed phishing campaigns and malware-laced emails reported by enterprise customers.
- Investigated phishing sites (fake login portals, credential harvesters) using browser tools, and URLScan.
- Reverse-engineered malware attachments (Office macros, HTA, JS, HTML smuggling, binary samples) to identify payload delivery.
- Wrote generic and static signatures for malware and phishing, improving detection accuracy.
- Collaborated with internal teams to triage escalations, reduce FP/FN, and publish internal reports.
Security Researcher
Mindtree (LTIMindtree)
Pune
12.2020 - 08.2022
- Hunted malware from MalwareBazaar, VirusTotal, private feeds, building an internal malware knowledge base.
- Conducted multi-stage payload analysis to uncover obfuscation techniques and campaign detection logic.
- Specialized in AgentTesla, Formbook, and MSIL malware families, publishing detection updates.
- Authored generic detection signatures covering multiple variants across threat actors.
- Trained junior analysts on malware reverse engineering and YARA rule creation.
Malware Analyst (Intern → Full-time)
Max Secure Software
Pune
08.2018 - 11.2020
- Performed reverse engineering of PE and non-PE files using IDA Pro, OllyDbg, and x64dbg.
- Developed C++ detection code by analyzing malware entry points and recurring code patterns.
- Integrated Cuckoo Sandbox with SIEM for automated malware hunting and reporting.
- Conducted Cuckoo log analysis to extract IOCs and improve detection workflows.
- Built an ML-based malware classifier (Random Forest) using PE entropy, opcode features, and metadata.
- Authored internal documentation and training sessions on malware analysis workflows.
Education
Master of Computer Science -
Savitribai Phule Pune University
Pune01.2019
Bachelor of Computer Science -
Savitribai Phule Pune University
Ahilyanagar, MH01.2017
Skills
- Malware family tracking
- Threat intelligence
- Malware analysis
- dynamic analysis
- Payload unpacking
- Windows internals
- OllyDbg
- DnSpy
- Yara
- Python
- C#
- Email security
Publications
- The silent, fileless threat of VShell, technical blog, August 21, 2025 https://www.trellix.com/blogs/research/the-silent-fileless-threat-of-vshell/
Certification
- CompTIA Security+ (SY0-501) Cert Prep: 1 Threats, Attacks, and Vulnerabilities -completed 7/25/2020
- Ethical hacking: vulnerability analysis- completed 12/18/2024
- Offensive penetration testing- completed 7/21/2025
Timeline
Security Researcher
Trellix
08.2022 - Current
Security Researcher
Mindtree (LTIMindtree)
12.2020 - 08.2022
Malware Analyst (Intern → Full-time)
Max Secure Software
08.2018 - 11.2020
Master of Computer Science -
Savitribai Phule Pune University
Bachelor of Computer Science -
Savitribai Phule Pune University