Analyze Packed Executable to Identify Attack Vector and Payload

CYBRScore
Virtual Lab

In this scenario-based lab, the IT security team has provided you with a suspicious executable they discovered on a legacy Windows XP workstation. The executable is packed so you'll need to unpack it in order to start your analysis and figure out what it might be doing. Featured tools include CFF Explorer, ExeinfoPE, and Process Hacker.

Time
45 minutes
Difficulty
Intermediate
Share
NEED TO TRAIN YOUR TEAM? LEARN MORE
Join over 3 million cybersecurity professionals advancing their career
Sign up with
Required fields are marked with an *
or

Already have an account? Sign In »

Overview

In this scenario-based lab, the IT security team has provided you with a suspicious executable they discovered on a legacy Windows XP workstation. The executable is packed so you'll need to unpack it in order to start your analysis and figure out what it might be doing. Featured tools include CFF Explorer, ExeinfoPE, and Process Hacker.