OSIX PRESENTS: Reversing Malware I and II

[Library Index]

[View category: Reverse Engineering] [Discuss Article]

OSIX PRESENTS: Reversing Malware I and II

Article is yet to be rated

Author:

1746

Submitted:

07-Jan-2006 20:57:35

Imported From:

zZine (original author: 1746)

In this two-part series written by MadGuy over at OSIX, beginners and interested readers can get an overview of Malware and how it works, as well as an insight on the battle for control of your computer. For someone at an intermediate level, or someone who may be interested in getting a start in Malware analysis, there is a wealth of valuable information. If you happen to be an experienced researcher, you may just pick up a trick or three from this well written series.

In Part One, "The Science of Malware Analysis", there's a short history and a description of different types of Malware and the mechanisms that are used to hide and propagate them.
There's a great list of analysis tools, some safety precautions when reversing malware, and a list of reference materials if you'd like to do some further reading.

Part Two, "The Real Deal", is an in-depth analysis of an example trojan, "Gorgon v1.0". Here, we are shown how the tools described in part I are used to trace the activities of this trojan in an organized step-by-step manner and what needs to be done to remove it.

To conclude the series, MadGuy presents a "quick scanner" to get rid of Gorgon, and a "discussion of malware as a whole and what we can do to combat it."

All in all, I highly recommend these articles for anyone interested in learning more about Malware, so jump over to OSIX and take a look! As MadGuy says (channeling the British SAS), "Who dares, wins."

"Reversing Malware I: The Science of Malware Analysis"

"Reversing Malware, Deuce: The Real Deal"

This article was originally published by CyberArmy.net in the CyberArmy Library.

You must be logged in to vote on an article

About Us | Privacy Policy | Mission Statement | Help