Live Chat
Monday - Friday 8am - 6pm EST Chat Now
Contact Us
Monday - Friday 8am - 8pm EST 1-800-268-7737 Other Contact Options
Checkout

Cart () Loading...

    • Quantity:
    • Delivery:
    • Dates:
    • Location:

    $

Focal Point - Behavioral Malware Analysis

New – Learn the fundamental skills necessary to analyze malicious software from a behavioral perspective.

GK# 100221

Course Overview

TOP

Focal Point - Behavioral Malware Analysis teaches you the fundamental skills necessary to analyze malicious software from a behavioral perspective. From simple key loggers to massive botnets, this class covers a wide variety of current threats. Using system monitoring tools and analytic software, you will analyze real-world malware samples in a training environment, giving you hands-on experience building secure lab environments, classifying malware, analyzing behavioral characteristics and their effects to systems, and documenting your findings. You will leave the course with the skills and abilities required to be an effective malware analyst.

Student Practical:
Using the tools, skills, and methodologies taught in Days 1 through 4 of the class, students will derive the answers to questions regarding one final real-world malware specimen. Each student will have to reverse engineer the malware to discover its capabilities and persistence level as well as the threat level of the malware.

 

Learn more about this topic. View the recorded webinar From Analyst to Threat Hunter.

Schedule

TOP
  • Delivery Format:
  • Date:
  • Location:
  • Access Period:

$

Class is Full
This session is full. Please select a different session.

What You'll Learn

TOP

In this class you will learn:

  • Set up a secure lab environment in which to analyze malicious software
  • Build and maintain a toolset of freely available, trusted tools
  • Classify different types of malware and describe their capabilities
  • Analyze malware samples of varying types to ascertain their specific behavioral characteristics and their impact on a system
  • Determine if a given sample is persistent and, if so, identify and remediate the persistence mechanism(s)
  • Identify when a sample is aware of its virtual environment and will require more advanced static or dynamic analysis
  • Document analytic findings using a comprehensive reporting template

Course Outline:

  1. Reverse Engineering
  2. Malware Overview
  3. Windows Internals Regarding Malware Analysis
  4. Building an Analysis Environment
  5. Behavioral Analysis Process (BA)
  6. Understanding and Using the BA Process
  7. Knowing Your Goals
  8. BA Tools of The Trade
  9. Baselining
  10. Document Embedded Malware
  11. Macro Viruses
  12. Botnets
  13. Keyloggers
  14. Malicious Mobile Code
  15. Backdoors
  16. Trojan Horses
  17. User Mode Rootkits
  18. VMWare Detection
  19. Destructive Malware
  20. CHM Malware
  21. Kernel Mode Rootkits

Labs:

  1. BA Process Lab 1
  2. BA Process Lab 2
  3. BA Process Lab 3
  4. Day 1 Scenario
  5. Document-Embedded Malware 1
  6. Document-Embedded Malware 2
  7. Spyware Sample
  8. Ransomware Sample
  9. IRC Bot Sample

Prerequisites

TOP
  • Thorough understanding of Microsoft Windows
  • Experience with VMWare software although not required would be beneficial
  • Knowledge of networking protocols and Wireshark filtering is recommended but not required

Who Should Attend

TOP
  • Threat operation analysts seeking a better understanding of malware
  • Incident responders who need to quickly address a system security breach
  • Forensic investigators who need to identify malicious software
  • Individuals who have experimented with malware analysis and want to expand their malware analysis techniques and methodologies
Course Delivery

This course is available in the following formats:

Classroom Live

Receive face-to-face instruction at one of our training center locations.

Duration: 5 day

Virtual Classroom Live

Experience expert-led online training from the convenience of your home, office or anywhere with an internet connection.

Duration: 5 day

Request this course in a different delivery format.
Enroll