Analyzing a malware sample with Memory Forensics
ฝัง
- เผยแพร่เมื่อ 22 ต.ค. 2022
- 🎓 MCSI Certified DFIR Specialist 🎓
🏫 👉 www.mosse-inst...
💻🔎 MCSI Digital Forensics Library 🔎💻
📙📚 👉 library.mosse-...
🕵️♂️ ☣️ A Simple Process to Analyse Malware Samples with Memory Forensics ☣️ 🕵️♀️
📺 🎬 👉 • A Simple Process to An...
In this video we will demonstrate a piece of malware being analyzed with memory forensics. These techniques can be applied to any existing or new pieces of malware that arise, take notes and give it a go for yourself!
Memory forensics is a branch of digital forensics that focuses on acquiring and analyzing data stored in a computer's memory. Memory forensics can be used to examine a wide variety of artifacts, including data structures, process execution, and network activity. Memory forensics is a powerful tool for analysts because it can provide a wealth of information about what a system was doing at the time of acquisition. For example, an analyst can use memory forensics to identify which processes were running, what network connections were active, and what data was present in memory.
Malware analysis is a critical process for understanding the behavior and potential impacts of malicious software. Memory forensics is a powerful technique for analyzing malware samples, as it can provide insights into the inner workings of malware that would be otherwise difficult to obtain.
Memory forensics can be used to analyze a variety of malware samples, including those that are designed to evade detection by traditional means. In many cases, memory forensics can provide insights that would be otherwise difficult to obtain. For example, memory forensics can be used to identify relationships between different pieces of malware, understand the purpose of specific malware components, and determine the ultimate goal of a malware sample.
