Tuesday was another full day of malware analysis. The coursework, hosted by Mandiant, consisted of an introduction to OllyDbg, an in-depth look at the Windows loader and the Windows API, specifically covering registry functions, process/threading functions, and sockets.
Malware is malicious code developed by cyberattackers, designed to cause extensive damage to data and systems or to gain unauthorized access to a network. zvelo blocks malicious threats and exploits which can be detected at the domain, full-path, or page-level.
On Monday, I took a killer crash course from Mandiant on malware analysis. Mandiant was not shy and dove right into the course curriculum. They even setup a great VM for us to practice on, complete with real world samples of malware.