Overview
This course on malware analysis aims to teach learners how to deobfuscate VBS and PowerShell code, perform and detect process hollowing, hide Crontab entries, and execute Windows DLL injection via AppInit_DLLs. The teaching method involves practical demonstrations and step-by-step tutorials. This course is intended for individuals interested in cybersecurity, malware analysis, and threat detection.
Syllabus
Emotet Malware Analysis - Part 1 - Deobfuscating VBS code.
Emotet Malware Analysis - Part 2 - Deobfuscating PowerShell.
Learn Malware Analysis with Process Hollowing - How to perform and detect.
Learn Malware Analysis with Crontab Persistence Tricks - Hide Crontab Entries.
Windows DLL Injection via AppInit_DLLs - Part 1.
Windows DLL Injection via AppInit_DLLs - Part 2.
Windows DLL Injection via AppInit_DLLs - Part 3.
Windows DLL Injection via AppInit_DLLs - Part 4.
Taught by
Reversing Hub