Validate Indications of Compromise: Analysis of PE File
PEStudio is a tool that allows users to perform malware assessments of executable files. In this lab, you will investigate a suspicious executable file found on an employee's laptop. To perform a malware assessment, you will use PEStudio to analyze the file and detect any malicious functions, suspicious strings, or symbols found in the file.
Time
30 minutes
Difficulty
Beginner
Share
Join over 3 million cybersecurity professionals advancing their career
Sign up with
Required fields are marked with an *
or
Already have an account? Sign In »
Overview
PEStudio is a tool that allows users to perform malware assessments of executable files. In this lab, you will investigate a suspicious executable file found on an employee's laptop. To perform a malware assessment, you will use PEStudio to analyze the file and detect any malicious functions, suspicious strings, or symbols found in the file.
Learning Partner
