Instructor-led training course
This course was formerly known as Malware Analysis Fundamentals.
This course provides a beginner-level introduction to the tools and methodologies used to perform malware analysis on executables found in Windows systems using a practical, hands-on approach. The course introduces students to decompilation with Ghidra and introduces Windows technologies that are prevalent in malware, such as WMI, .NET, and PowerShell. The content is taught by FLARE malware analysts who are experienced in analyzing a diverse set of malware.
Prerequisites: General knowledge of computer and operating system fundamentals. Exposure to computer programming fundamentals and Windows Internals experience (recommended).
After completing the course, learners should be able to:
Information technology staff, information security staff, corporate investigators, and others who need to understand how malware functions operate and the processes involved in malware analysis.
In-classroom instructor-led training
Two days (in-person delivery)
Students are required to bring their own laptop that meets the following specs: