Basic Malware Analysis For Incident Response(Static Analysis)

Key features to understand in a malware

Portable Executable (PE file)

Imports

Mutex

Ordinal

Data encoding

Basic Static analysis

Detecting packers

Checking the strings

Checking dynamically linked functions

Analyzing PE header

  1. .text

File header

What information can we get from the file header

Section header

Optional header

--

--

--

A highly energetic and enthusiastic individual specialized in the field of Information Security. A security researcher, Threat Hunter, freelancer.

Love podcasts or audiobooks? Learn on the go with our new app.

Recommended from Medium

How I Fully Quit Gmail (So You Can)

The shared history of hacking and telephony

C0unt3r CyberTalents CTF #Linux Essentials

Let’s demystify that 20-digit utility token-Part 1

Gate.io is currently holding a $PUSH trading competition

Protecting Business-Critical Data is Imperative in Times of Ransomware

The IPv6 Apocalypse is Here: 3 Reasons to Upgrade

Technical Foundations For Clinical IoT & Mobile

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store
Pathum Joseph

Pathum Joseph

A highly energetic and enthusiastic individual specialized in the field of Information Security. A security researcher, Threat Hunter, freelancer.

More from Medium

Cyber Research #35

The Weekly Threat 4–26–2022

Your Own Free Security Incident Response Platform in Minutes

Investigating Conti Ransomware on Microsoft Exchange with Splunk -TryHackMe