Validate Indications of Compromise: Analysis of PE File

CYBRScore
Cyberscore

PEStudio is a tool that allows users to perform malware assessments of executable files. In this lab, you will investigate a suspicious executable file found on an employee's laptop. To perform a malware assessment, you will use PEStudio to analyze the file and detect any malicious functions, suspicious strings, or symbols found in the file.

Time
30 minutes
Difficulty
Beginner
Share
NEED TO TRAIN YOUR TEAM? LEARN MORE
Join over 3 million cybersecurity professionals advancing their career
Sign up with
Required fields are marked with an *
or

Already have an account? Sign In »

Overview

PEStudio is a tool that allows users to perform malware assessments of executable files. In this lab, you will investigate a suspicious executable file found on an employee's laptop. To perform a malware assessment, you will use PEStudio to analyze the file and detect any malicious functions, suspicious strings, or symbols found in the file.