Uzair Afzal

Basic Static Analysis: Let's jump into the labs of the  PMA (Practical Malware Analysis) . You can revise you basic concepts about the malware analysis from  blog . Outdated tools were used in the book So, I'll be using some latest tools which provides us the same results. Labs can be downloaded from  PMA Labs . Tools: Following tools are used throughout the  Lab-01 . PEStudio DIE (Detect it easy) Virus Total upx Lab-01: Binary Name:  Lab01-01.dll Question1: Upload the files to http://www.VirusTotal.com/ and view the reports. Does  either file match any existing antivirus signatures? Ans:  Open the file the file in  PEStudio.exe  to find out the hash of file. Figure 1 As you can see in  Figure 1  hashes are highlighted. Use any one of hash or click on the  URL  to find match for any existing antivirus signatures. You can also take help from PEStudio.exe to collect the virus total information as shown in the following figur...

Hi folks, just started the series on PMA (Practical Malware Analysis) . Being an analyst i would recommend to gain expertise on "Malware Analysis". This blog help us to quick recap the concepts of malware as well as from analysis perspective. We'll start from basic and proceed towards advance level. Introduction: Malware refers to "Malicious Binary" which is instructive by the threat actors (called as "Hackers" ) to achieve their motives. Motives can be vary like it could be data stealing, damage/destroy organization systems. Viruses Worms Trojan Spyware Adware Ransomware Aforementioned names are the malware types which is collectively called "Malware". Let's jump into the main topic of this blog without going into the details. Malware Analysis: Malware analysis is the process of understanding the working flow/behavior/malicious activity of malware. The results of the malware analysis help the analysts to detect and prevent the threats. ...