Malware Analysis is the study of a malware by dissecting its different components and studying its behavior on the host computer's operating system. Static analysis gives an approximate picture at best. It is impossible to fully predict the behavior of all but the smallest programs. Static analysis has the advantage that it can reveal how a program would behave under unusual conditions, because we can examine parts of a program that normally do not execute. With dynamic analysis, we study a program as it executes. Here, tools of the trade are debuggers, function call tracers, machine emulators, logic analyzers, and network sniffers. The advantage of dynamic analysis is that it can be fast and accurate. However, dynamic analysis has the disadvantage that "what you see is all you get". For the same reason that it is not possible to predict the behavior of a non-trivial program, it is also not possible to make a non-trivial program traverse all paths through its code.
IT Blogs (1)
, IT Courses & Reviews (11)