• Classroom
Course Description

Behavioral Malware Analysis teaches students the fundamental skills necessary to analyze malicious software from a behavioral perspective. From simple key loggers to massive botnets, this class covers a wide variety of current threats. Using system monitoring tools and analytic software, students will analyze real-world malware samples in a training environment, giving them hands-on experience building secure lab environments, classifying malware, analyzing behavioral characteristics and their effects to systems, and documenting findings.

Learning Objectives

  1. Set up a secure lab environment in which to analyze malicious software
  2. Build and maintain a toolset of freely available, trusted tools
  3. Classify different types of malware and describe their capabilities
  4. Analyze malware samples of varying types to ascertain their specific behavioral characteristics and their impact on a system
  5. Determine if a given sample is persistent and, if so, identify and remediate the persistence mechanism(s)
  6. Identify when a sample is aware of its virtual environment and will require more advanced static or dynamic analysis

Framework Connections

The materials within this course focus on the Knowledge Skills and Abilities (KSAs) identified within the Specialty Areas listed below. Click to view Specialty Area details within the interactive National Cybersecurity Workforce Framework.

Feedback

If you would like to provide feedback for this course, please e-mail the NICCS SO at NICCS@hq.dhs.gov.