Advanced Malware Analysis: Redux

Cybrary

Course

In this course, we introduce new techniques to help speed up analysis and transition students from malware analyst to reverse engineer. We skip the malware analysis lab set up and put participants hands on with malware analysis.

Time

3 hours 41 minutes

Difficulty

Advanced

CEU/CPE

NEED TO TRAIN YOUR TEAM? LEARN MORE

Join over 3 million cybersecurity professionals advancing their career

Facebook

Google

Microsoft

Already have an account? Sign In »

Course Content

Module 1: RE Preparation

Module 1 Objectives

Reverse Engineering Process Review

Malware Analysis Tools

Malware Handling

Malware Components Part 1: Windows OS

Malware Components Part 2: PE Files and Memory

14m

Malware Components Part 3: WinAPI and Registry

Malware Components Part 4: Malware Behaviors

Module 1 Summary

1 minute

Module 2: x86 & x64 Architecture

2.1Module 2 Objectives

1 minute

2.2Numbering Systems

2.3Computer Architecture Part 1: x86/x64

2.4Computer Architecture Part 2: Assembly Language

10m

2.5Computer Architecture Part 3: Control Flow and Stack

10m

2.6Module 2 Summary

Module 3: Dynamic & Static Malware Analysis

3.1Module 3 Objectives

3.2Dynamic Analysis Process Part 1

3.3Dynamic Analysis Process Part 2

13m

3.4Dynamic Analysis Process Part 3: Advanced Analysis

3.5Static Analysis Part 1

17m

3.6Static Analysis Part 2

13m

3.7Module 3 Summary

Module 4: Malware Challenges

4.1Module 4 Objectives

1 minute

4.2Malware Packers Part 1

4.3Malware Packers Part 2

4.4Obfuscation Part 1

4.5Obfuscation Part 2: XOR

4.6Obfuscation Part 3: base64

4.7Identifying Encryption

4.8Anti-Analysis Part 1

4.9Anti-Analysis Part 2

4.10Module 4 Summary

Module 5: Memory Analysis

5.1Module 5 Objectives

1 minute

5.2Forensics Process

5.3Memory Analysis Part 1

5.4Memory Analysis Part 2

5.5Module 5 Summary

1 minute

5.6Course Summary

Course Description

The Malware Analysis: Redux course equips participants to handle complex malware analysis tasks by reacquainting them with key analysis topics and exercises.

Prerequisites

Attendees should have a knowledge of malware analysis core concepts, a working malware analysis lab and a skill set in x86, x64 architecture and Windows APIs. A software development background is also recommended.