Event details

Mandiant Academy Training Event

  • Course: Basic Static and Dynamic Analysis (on-demand)
  • Date: 3 months to complete from the date of enrollment (not from the date of first login)
  • Cost: $2,000 USD or 2 units
  • Delivery Method: On-demand (self-paced / web-based training)
  • Location: Mandiant Academy learning platform

At a glance

Basic Static and Dynamic Analysis is a beginner-level course that introduces the tools and methodologies used to perform malware analysis on executables found in Windows systems. Using a practical, hands-on approach this course exposes participants to basic analysis techniques. It also provides the foundational knowledge of how to store, name, move, and execute malware in a safe environment.

Course goals

After completing this course, learners should be able to:

  • Explain the basics of malware analysis and Indicators of Compromise (IOCs)
  • Describe how malware analysis and IOCs fit into the investigative process
  • Create a safe environment to examine and execute malware samples without risk to systems or networks
  • Triage malware using hands-on basic static and dynamic analysis techniques

Course outline

The course consists of the following modules, with labs included throughout the instruction:

  • Module 1: Basic Static Analysis
    An overview of the techniques, concepts, and tools needed to efficiently analyze malware without execution.
    • Introduction to Basic Static Analysis
    • Concepts
    • Tools
    • Basic Static Lab
  • Module 2: Basic Dynamic Analysis
    An overview of the tools and strategies needed to analyze malware in a controlled execution environment, including host activity monitoring and network interception.
    • Dynamic Strategies
    • Host Activity Monitoring
    • Network Interception Monitoring
    • Basic Dynamic Lab

Who this course helps

The content and pace of this course is intended for information technology staff, information security staff, corporate investigators, and others who need to understand how malware functions and the processes involved in malware analysis.

Participant requirements

Participants should have a general knowledge of computer and operating system fundamentals. Exposure to computer programming fundamentals and Windows Internals experience is recommended.

Duration

16 hours

What to bring

Participants are required to use their own laptop that meets the following specs:

  • Virtualbox 7+
  • 30 GB of free HDD space