101.school
CoursesAbout
Search...⌘K
Generate a course with AI...

    Introduction to Malware Analysis

    Receive aemail containing the next unit.
    • Introduction to Malware Analysis
      • 1.1Importance of Malware Analysis
      • 1.2Types of Malware
      • 1.3Basic Terminology
    • Preliminary Analysis Techniques
      • 2.1Fingerprinting
      • 2.2Static Properties Analysis
      • 2.3Code Identity Techniques
    • Environment for Malware Analysis
      • 3.1Safe Setup Guidelines
      • 3.2Virtual Machines and how to use them
      • 3.3Basic tools for analysis
    • Static Malware Analysis
      • 4.1PE File Basics
      • 4.2Viewing Files
      • 4.3Disassembling Programs
    • Dynamic Malware Analysis
      • 5.1Introduction
      • 5.2Dynamic Analysis Tools
      • 5.3Dynamic Analysis Techniques
    • Understanding Malware Behaviour
      • 6.1Memory Forensics
      • 6.2Registry Analysis
      • 6.3Network Analysis
    • Reverse Engineering
      • 7.1Introduction to Reverse Engineering
      • 7.2Methods of Reverse Engineering
      • 7.3Tools for Reverse Engineering
    • Advanced Static Analysis
      • 8.1Assembler Basics
      • 8.2Code Constructs
      • 8.3Data Encodings
    • Advanced Dynamic Analysis
      • 9.1Self-Defending Malware
      • 9.2Debugging and Debugger
      • 9.3Discovering Algorithms
    • Anti-Reverse Engineering
      • 10.1Packers, Crypters and Protectors
      • 10.2Rootkits
      • 10.3Anti-debugging Tricks
    • Malware and Network
      • 11.1Botnets
      • 11.2Traffic Analysis
      • 11.3Identification of Command and Control Servers
    • Malware Attribution
      • 12.1Threat Actors and Campaigns
      • 12.2Attribution Techniques
      • 12.3Case Study
    • Malware Mitigation and Prevention
      • 13.1Incident Response
      • 13.2Remediation
      • 13.3Future Trends in Malware

    Introduction to Malware Analysis

    Understanding Different Types of Malware

    software that is intentionally hostile, intrusive, or damaging to a computer or network

    Software that is intentionally hostile, intrusive, or damaging to a computer or network.

    Malware, short for malicious software, is any software intentionally designed to cause damage to a computer, server, client, or computer network. There are various types of malware, each with its unique characteristics, functionalities, and methods of infection. This article will delve into the different types of malware, their purpose, and notable examples.

    Viruses

    A computer virus is a type of malicious code or program written to alter the way a computer operates. It is designed to spread from host to host and has the ability to replicate itself. Viruses often perform malicious activities, such as corrupting system files and stealing sensitive information. A notable example is the "ILOVEYOU" virus, which caused billions of dollars in damage in the year 2000.

    Worms

    Worms are a type of malware that spread copies of themselves from computer to computer. They can do this without any human intervention or additional software, such as a host program. Worms often exploit vulnerabilities or loopholes in system security to spread. The "Conficker" worm, which infected millions of computers worldwide in 2008, is a well-known example.

    Trojans

    Trojans are malicious programs that mislead users of their true intent. They are often disguised as legitimate software and trick users into loading and executing the malware on their systems. Once activated, Trojans can enable cyber-criminals to spy on you, steal your sensitive data, and gain backdoor access to your system. The "Zeus" Trojan, used to steal banking information, is a notorious example.

    Ransomware

    Ransomware is a type of malware that involves an attacker locking the victim's computer system files -- typically through encryption -- and demanding a payment to decrypt and unlock them. Recent examples include "WannaCry" and "Petya," which caused significant disruption by targeting businesses across the globe.

    Spyware

    Spyware is a type of malware designed to collect and steal the user's sensitive information without their knowledge. This can include details like credit card numbers, passwords, and other personal information. A well-known example is "Zbot," a Trojan horse malware package that runs on versions of Microsoft Windows and primarily used to steal banking information.

    Adware

    Adware, short for advertising-supported software, is a type of malware that presents unwanted advertisements to the user. While not always harmful, adware can undermine system performance by consuming bandwidth and can also serve as a gateway for other types of malware.

    By understanding the different types of malware, their characteristics, and their methods of infection, we can better prepare ourselves to prevent, detect, and mitigate these threats. This knowledge forms a crucial part of the foundation for further learning in malware analysis.

    Test me
    Practical exercise
    Further reading

    Hi, any questions for me?

    Sign in to chat
    Next up: Basic Terminology