Scrutinize The Three Phases Of Malware

251 Words2 Pages
University lecturer Mohamad Fadli Zolkipli defines Malware analysis as the process used to investigate malware operation in order to learn and understand that malicious intent. According to SANS there are three phases of malware analysis. They are behavioural analysis code analysis and memory analysis. The behavioural analysis scrutinizes the malware's interactions with the file system, the registry, the network, and other OS components. If during the analysis I notice suspicious behavioural characteristics, then SANS encourages me to alter the laboratory environment to induce new characteristics. To perform this task I would utilise Wireshark in order to automate some aspects of behavioural analysis, and to summarize the analysis process.

More about Scrutinize The Three Phases Of Malware