Advanced dynamic analysis Course

This course will help the student get to grips with advanced dynamic analysis.

2 hours, 33 minutes

Course description

A complete understanding of a malicious file can be best achieved during advanced dynamic analysis. This course includes an overview of the x86 architecture and the use of a debugger to analyze malicious code. You will learn to step through the assembly code of a malware sample, set breakpoints and analyze malware in-depth. Advanced dynamic analysis also includes using a debugger to analyze functions for encoding and encryption throughout a malware sample and manually unpacking a packed malware sample.


Manual unpacking of malware

Video - 00:12:00

Demonstrate manual unpacking of a packed piece of malware using UPX.
Identifying encoding/encryption in malware

Video - 00:37:00

Demonstrate identifying and analyzing encoding and encryption routines within malware.
Debugging malware

Video - 00:43:00

Demonstrate debugging a piece of malware.
Using breakpoints

Video - 00:14:00

Demonstrate setting and using breakpoints to analyze malware.

Video - 00:05:00

An overview of the usage of breakpoints and why they are important for debugging malware.
Debugging basics

Video - 00:21:00

Demonstrate the use of a debugger.
Memory usage while debugging

Video - 00:07:00

An overview of memory used while debugging malware.
What is advanced dynamic analysis

Video - 00:15:00

Define advanced dynamic analysis, procedures and tools used.

Meet the author

Carolyn Ahlers

Carolyn has been a malware reverse engineer for over nine years. She initially gained her reverse-engineering skill set in the US Navy, conducting malware analysis for defensive purposes, incident response and enabling exploitation operations. She is proficient at analyzing various types of binaries and working with many malware analysis tools and programming languages such as x86 assembly, C, C++ and Python. She also has three years’ experience as a computer forensic analyst conducting analysis on various media devices in search of malicious intrusions.

Carolyn has taken numerous malware reverse-engineering courses, at levels from beginner to advanced. She has also created numerous malware analysis training pipelines. She has her Bachelor of Science degree in computer networks and cybersecurity from the University of Maryland Global Campus, and has been SANS GIAC Reverse Engineering Malware (GREM)-certified since 2015.

Unlock 7 days of free training

  • 1,400+ hands-on courses and labs
  • Certification practice exams
  • Skill assessments

Associated NICE Work Roles

All Infosec training maps directly to the NICE Workforce Framework for Cybersecurity to guide you from beginner to expert across 52 Work Roles.

  • All-Source Analyst
  • Mission Assessment Specialist
  • Target Developer

Plans & pricing

Infosec Skills Personal

$299 / year

  • 190+ role-guided learning paths (e.g., Ethical Hacking, Threat Hunting)
  • 100s of hands-on labs in cloud-hosted cyber ranges
  • Custom certification practice exams (e.g., CISSP, Security+)
  • Skill assessments
  • Infosec peer community support

Infosec Skills Teams

$799 per license / year

  • Team administration and reporting
  • Dedicated client success manager
  • Single sign-on (SSO)
    Easily authenticate and manage your learners by connecting to any identity provider that supports the SAML 2.0 standard.
  • Integrations via API
    Retrieve training performance and engagement metrics and integrate learner data into your existing LMS or HRS.
  • 190+ role-guided learning paths and assessments (e.g., Incident Response)
  • 100s of hands-on labs in cloud-hosted cyber ranges
  • Create and assign custom learning paths
  • Custom certification practice exams (e.g., CISSP, CISA)
  • Optional upgrade: Guarantee team certification with live boot camps

Learn about scholarships and financing with

Affirm logo

Award-winning training you can trust