Malware Analysis Series Part 2: Dynamic Analysis
Performing static analysis is not enough to fully understand malware’s true functionality. That is why running the malware in an isolated environment is the next step for the malware analysis process. During this phase, the analyst observes all the behaviors of the malicious binary. Dynamic analysis techniques track all the malware activities, including DNS summary, TCP connections, network activities, syscalls and much more. In this article we are going to learn more about dynamic analysis.