Speaker Deck

Analyzing Malware with REMnux

by hiddenillusion

Published June 11, 2012 in Technology

"This talk will outline how one can more efficiently and effectively perform their malware analysis by focusing on resources such as REMnux. While the topic’s scope can be quite large, the focus will be mainly on analyzing Portable Executable (PE) files. We’ll see how to identify what the file in question is to ascertain that it is a PE file and then dive into how one can perform file analysis in an automated fashion as well use some manual methods. With the automated methods, we will look at some simple scripting that the analyst can do and touch on what’s currently included in the tools so the analyst can fully understand what the tools do and how they can be altered to fit their needs."