Monday, April 05, 2010

Building Your Own Malware Lab

There are 2 nice articles that show you how to build your own malware lab. See if any of the tools below in your own check list. Here's the summary:


  1. Upload the suspicious file to VirusTotal.
  2. Detect and monitor the changes made by isolating execution using Sandboxie.
  3. Analyzing malware and tracing of all system calls with CWSandbox.
  4. Obtain an automated threat analysis design with ThreatExpert.
  5. Analyzing suspicious network traffic with Anubis.
  6. Analyzing PDF, flash, and JavaScript with Wepawet.
  7. Examine multiple aspects of a PE using MANDIANT Red Curtain.
Reference: