The course aims to teach the students how to detect, analyzing and track a malicious program. It begins, by introducing the basics of reverse engineering concepts and using tools like IDA pro to analyze x86 malicious code. The concept of static and dynamic malware analysis will be introduced gradually through the course. After, the techniques commonly employed by malware to thwart the analysis process will be inspected. Finally, the business model of the underground economy of the malware-based cybercrimes will be discussed. The course is self-contained. However, a good knowledge of programming, computer architecture, operating systems and compiler are highly desired. |