: Examining the binary or script without execution to find strings, headers, and potential packed signatures (e.g., UPX).
: Utilizing memory dump analysis to detect obfuscated malware that may not leave traces on the physical disk. ColonelYobo_2022_Nov-Dec.zip
The archive typically contains documentation and analysis for malware samples encountered during the November to December 2022 timeframe. Key elements often included in such write-ups are: : Examining the binary or script without execution
: Analysis of "hooks" in registry keys or values designed to protect autostart capabilities for the malware. Key elements often included in such write-ups are:
The zip file is a collection of malware analysis reports and artifacts associated with the Fall 2022 Introduction to Information Security (CS 6035) curriculum at Georgia Tech. Overview of Content
: Applying algorithms such as Random Forest or Gradient Boosting to classify malware types based on extracted features like file size or network connections.