This blog posting is for anyone who has an interest in malware. While the specifics are definitely malware and analysis environment specific, the general process and procedure can be used for any binary file. The idea here is to help you understand how to take a malware binary found in your environment and learn how to get actionable indicators from it.
Let’s take apart some malware! Over the next week, we’ll be posting a three-part blog series in which I’ll walk through a known malware sample, and explain how to get usable data out of it. Mike has achieved a GREM certification from SANS GIAC twice, and holds a Bachelor of Science degree in Information Security and Forensics from the Rochester Institute of Technology. Written by Mike Sweeney, Senior Incident Response/Forensics Analyst at Critical Defence.
0 kommentar(er)
