From the course: Cisco Certified CyberOps Associate (200-201) Cert Prep: 1 Security Concepts

Unlock the full course today

Join today to access over 22,600 courses taught by industry experts or purchase this course individually.

Analyzing malware

Analyzing malware

From the course: Cisco Certified CyberOps Associate (200-201) Cert Prep: 1 Security Concepts

Start my 1-month free trial

Analyzing malware

- [Instructor] Malware analysis and threat protection moves through all phases of an attack. That includes prevention, detection, response and remediation. To be effective at hunting threats and analyzing malware, you need to know the malware process. Malware goes through an evolution that begins with its creation where the malicious actor outlines the goal of the virus, such as what are the desired effects and how is the virus launched and whether to include botnet control features. The code is then written and then disseminated where it is replicated in some manner. Some viruses have a trigger, but in general, the goal is to multiply and spread. The virus then moves into action phase and seeks to damage a system by delivering the payload. Knowing the progression of malware, you can see why it's essential that anti-malware protection detects the virus as a threat so it can quickly move to protect, quarantine, and then…

Contents