Reverse Engineering and Malware Analysis Training

Course Description

Every computer incident involves a Trojan, backdoor, virus, or rootkit. Incident responders must be able to perform rapid analysis on the malware encountered in an effort to cure current infections and prevent future ones.

During malware analysis, the analyst must determine how it operates, what functionality is built in and what attacker controlled domains or Internet Protocol (IP) addresses it communicates with. Failing to understand the malware functionality threatens all remediation efforts.

This course provides a quick introduction to the tools and methodologies used to perform malware analysis on executable found on Windows systems using a practical, hands-on approach. Students will learn how to extract host and network based indicators from a malicious program using dynamic and static analysis techniques.

Candidate will also learn the basics of how to find the functionality of a program by analyzing disassembly and by watching how it modifies a system as it runs in a debugger.

Who Should Attend

This training course is intended for professionals who have at least 2 years of full-time professional work experience information security domain. The training seminar is ideal for those working in positions such as, but not limited to:

Information security professionals, Forensic Investigators, Security Practitioners, Incident response team members, Law enforcement officers, anyone who have dealt with incidents involving malware.

Course Duration

24 Hours

Course Content

Malware Analysis Fundamentals

Assembling a toolkit for effective malware analysis
Examining static properties of suspicious programs
Performing behavioural analysis of malicious Windows executables
Performing static and dynamic code analysis of malicious Windows executables
Interacting with malware in a lab to derive additional behavioural characteristics

Reversing Malicious Code

Understanding core x86 assembly concepts to perform malicious code analysis
Identifying key assembly logic structures with a disassembler
Following program control flow to understand decision points during execution
Recognizing common malware characteristics at the Windows API level (registry manipulation, keylogging, HTTP communications, droppers)
Extending assembly knowledge to include x64 code analysis

Malicious Web and Document Files

Interacting with malicious websites to assess the nature of their threats
De-obfuscating malicious JavaScript using debuggers and interpreters
Analyzing suspicious PDF files
Examining malicious Microsoft Office documents, including files with macros
Analyzing malicious RTF document files

In-Depth Malware Analysis

Recognizing packed malware
Getting started with unpacking
Using debuggers for dumping packed malware from memory
Analyzing multi-technology and file-less malware
Code injection and API hooking
Using memory forensics for malware analysis

Examining Self-Defending

How malware detects debuggers and protects embedded data
Unpacking malicious software that employs process hollowing
Bypassing the attempts by malware to detect and evade the analysis toolkit
Handling code misdirection techniques, including SEH and TLS Callbacks
Unpacking malicious executable by anticipating the packer's actions

Course related details

View Malware Analysis BROCHURE for this Course

Related Courses

LATEST BLOGS

WHY IS CYBER SECURITY AWARENESS TRAINING NECESSARY FOR YOUR BUSINESS?

Why is Cyber Security Awareness Training Necessary for your Business - Blogs

To begin with, a cyber-security-trained workforce provides a lower risk to an organization’s information network’s security infrastructure. Because it guards against Data/security breaches and damages, cyber security is essential.

WHAT’S SQL INJECTION & DIFFERENT TYPES OF ATTACKS AND HOW CAN AN ATTACK BE PREVENTED?

What's SQL Injection & different types of Attacks and how can an Attack be Prevented - Blogs

SQL Injection (SQLi) is a type of Nursing injection attack in which an attacker uses harmful SQL queries to administer an online app’s information server, allowing them to access, change, and delete unauthorized information.

MOBILE HACKING – HOW TO HACK AN ANDROID PHONE

Mobile Hacking How to Hack an Androd Phone - Blogs

A mobile device allows communication between users on radio frequencies. It is used to send emails, multimedia sharing, and also used for internet access. In this period of time mobile has taken over desktops and computers as mobile phones. People are relying less on the computer as mobile has made our life simpler.

HOW TO BECOME A CYBER SECURITY EXPERT

How to Become a Cyber Security Expert - Blogs

We often hear the term “Ethical Hacker” or “Penetration Testers,” but who are they? Many companies employ penetration testers to improve data security by distinguishing and rectifying framework shortcomings before criminal programmers can abuse these shortcomings.

TOP 10 POPULAR CERTIFIED ETHICAL HACKING (CEH) TOOLS

Top 10 Popular Certified Ethical Hacking CEH Tools - Blogs

Certified Ethical Hacking tools facilitate a military operation, making back doors and payloads, cracking passwords, ANd an array of different activities. during this article, we’ll be discussing the highest ten moral hacking tools. Let us Disscus all the Popular Certified Ethical Hacking – CEH Tols.

HOW TO HACK WIRELESS NETWORKS

There are two main types of encryptions used. Wired Equivalent Privacy (WEP) is a Security Algorithm for IEEE 802.11 wireless networks. Wi-Fi Protected Access (WPA) and Wi-Fi Protected Access II (WPA2) are two Security Protocols and security certification programs developed by the Wi-Fi Alliance to secure wireless Computer Networks.

CAREERS AND SCOPE IN “CYBER SECURITY”

Careers and Scopes in Cyber Security - Blogs

We are putting software everywhere. This is changing the way we live and how we behave and interact with the world around us. As technology becomes more and more deeply integrated into our lives, we become more and more dependent on it. But this dependence makes us vulnerable if technology fail.

HOW HACKERS TRACK YOU AND DETECT YOUR IDENTITY ONLINE?

How do Hackers Track you and Detect your Identity Online - Blogs

When you surf the Internet, you may feel that you are alone but in fact, everything you do is being watched and recorded. The website you click will retain detailed information about each visitor, the ISP will monitor and store logs of all users, and even plugins and operating systems will collect and share information about your daily habits.

BASICS OF ETHICAL HACKING TRAINING

Hacking is a very common word now a day. Every other day we have attacks on cyberspace. According to studies, there is one cybercrime in India every 10 minutes. Ethical hacking is a concept where the Ethical Hacker (Security professionals) performs penetration testing to find out the vulnerabilities and patch them before any black hat hacker exploits them.

offers

Contact us

Codec Networks ready to help you.visit our HELP CENTER for any assistance

Live Feed & Resources

View Latest Blogs for this Course

View Upcoming Event and News

View Upcoming Webinar

Reverse Engineering and Malware Analysis Training

Course Description

Who Should Attend

Course Duration