Week 14 - Malware Analysis II (Master)

Course content

Dynamic Analysis and Sysinternals

Introduction

Section 1

lessons

Week 14 - Kickoff

Dynamic Analysis

Sysinternals Introduction

The Power of Sysinternals

Ready, Set, Lab! - Dynamic Analysis Tools

Proccess Explorer

Section 2

lessons

Process Explorer - Tool Introduction

Process Explorer - Practice

Process Monitor

Section 3

lessons

Windows Internals and The Win32 API

Process Monitor - Tool Introduction

Process Monitor - Practice

Autoruns

Section 4

lessons

The Registry and Autostart Extensibility Points

Autoruns - Tool Introduction

Autoruns - Practice

TCPView

Section 5

lesson

TCPView - Tool Introduction

Sysinternals Lab

Section 6

lesson

Ready, Set, Lab! - Dynamic Analysis with Sysinternals

PsExec

Section 7

lessons

PsExec

A Double-Edged Sword

PsExec - An Adversary's Perspective

PsExec - Hunting Malicious Uses of PsExec

Additional Dynamic Analysis Tools

Section 8

lessons

Additional Dynamic Analysis Tools

The Power of Anyrun

Dynamic Analysis and Sysinternals - Knowledge Check

Section 9

lesson

Dynamic Analysis and Sysinternals - Knowledge Check

Scenario

Section 1

lesson

Ready, Set, Lab! - Dynamic and Static Malware Analysis

Module Closure

Section 1

lessons

exam

Week 14 - Key Takeaways

Week 14 - Weekly Quiz (Master)

10Questions

Malware Analysis Glossary

Summary

Tools Overview

Malware Analysis Ongoing Learning