What is Malware Analysis?
Malware analysis is the study or process of determining the functionality, origin, and potential impact of a particular malware sample, such as a virus, worm, Trojan, a rootkit or a backdoor. Malware is computer software designed to harm the host operating system or to steal sensitive data from end users, organizations or companies. Malware may include software that collects unauthorized user information. Malware analysis is an important part of the prevention and detection of cyber attacks. Using malware analysis tools, cyber security experts or security engineers can analyze the life cycle of an attack and gain important forensic information to improve their threat intelligence.
Why Is It Needed?
Malware analysis refers to the process by which the purpose and functionality of the given malware samples are analyzed and determined by malware analysts. The information extracted from the malware scan provides information on the development of an effective malware detection technique. In addition, it is an essential aspect to develop effective removal tools, able to permanently remove malware on an infected system. Before 10 to 15 years, malware analysis was done manually by malware analyst experts. The process was tedious and tedious. The number of malware that needed to be scanned by vulnerability researchers was slowly increasing every day. This demand has led to effective malware scanning procedures. The purpose of this research is to study the techniques used to effectively perform malware scanning and detection on enterprise systems to reduce the damage caused by malware attacks on the functioning of organizations. Malware analysis experiments were conducted using both malware analysis techniques, namely dynamic analysis and static analysis on two different malware samples.