Reference no: EM133109407
Cyber Crime Malware
Static & Dynamic Malware Analysis
Introduction
The aim of this assessment is to analyse a given sample of malware, using static & dynamic analysis methods and write a detailed report. The sample is available on Moodle in zip format (password: infected).
Report
You are required to document the complete analysis of the sample. You can break it down into two main areas, i.e., static and dynamic analysis. You could have sub-sections in these areas, e.g., in dynamic analysis you can have file system, registry, and network activities as separate sections. For each section, you should list the tools you used (bullet points). Also, if the tools used require specific configuration, briefly explain what you did and give reasons for this. For example, in Process Monitor, you could mention the filters you applied (and why) to monitor specific processes.
- Static Analysis: A thorough investigation of the suspect binary in a non-running state. You must document all steps clearly.
- Dynamic Analysis: Running the malware in a virtual machine. Make sure that you have made a clean baseline snapshot (with all tools installed and configured), before you run the malware. Use the tools to monitor the malware's behaviour in the file system, registry, and network. Report on your findings.
Attachment:- Cyber Crime Malware.rar