Identify Rootkit and DLL Injection Activity
CYBRScore
Virtual Lab

Create Free Account

NEED TO TRAIN YOUR TEAM? LEARN MORE

Time
45 minutes
Difficulty
Intermediate

Students will use Olly Debugger and Process Hacker to debug a suspect program and determine if any of the observed behavior is malicious or not. This lab shows one possible way malicious software hooks into legitimate programs and will provide an "under the hood" perspective on how programs work in the Windows environment.

NEED TO TRAIN YOUR TEAM? LEARN MORE

Start your 3-day free trial and get unlimited access to our courses, labs, and practice tests

Sign up with
Facebook
Google
LinkedIn
Or

Already have an account? Sign In »

This Virtual Lab is part of a Career Path: Become a SOC Analyst - Level 2

Overview

Students will use Olly Debugger to debug a suspect program and determine if any of the observed behavior is malicious or not. They will also use Process Hacker to confirm if a possible DLL injection was successful. This lab fosters an understanding of debuggers, shows one possible way malicious software hooks into legitimate programs and will provide an "under the hood" perspective on how programs work in the Windows environment.

Comprehensive Learning

See the full benefits of our immersive learning experience with interactive courses and guided career paths.

LEARN MORE. ACHIEVE MORE.

Follow A Path

Deciphering the essentials to enter a new career is hard, so we did it for you!

Focus on building your skills and take this virtual lab in a guided Career Path.

Become a SOC Analyst - Level 2
Learn more about Career Paths

LEARN MORE. ACHIEVE MORE.

Follow A Path

Deciphering the essentials to enter a new career is hard, so we did it for you!

Focus on building your skills and take this virtual lab in a guided Career Path.

Become a SOC Analyst - Level 2
Learn more about Career Paths