Students will learn to use the Cuckoo sandbox to determine if an executable or document is potential malware. If the executable is packed (compressed), they will learn to use a debugger to unpack it.
Prerequisites
Basic knowledge of computer architecture and assembly language, and familiarity with the Unix/Linux command line.
Expected Duration
2 hours, self-paced. Pause and continue at any time.
2 CPEs awarded on successful completion.
Availability
Included if you are a subscriber to any of the following training packages:
- Level 1: Enterprise Instructional Labs
- Intrusion Detection and Prevention Lab Package
- Incident Response Package
- Law Enforcement/Counterintelligence Forensics Analyst 2
- Cyber Defense Forensics Analyst 2
- Cyber Defense Incident Responder
- Level 3: Attack Scenarios, Attack/Defense/IR Exercises, and Instructional Labs
- Level 2: Attack/Defense/IR Exercises and Instructional Labs
