Static Analysis
- Packed and obfuscated code will often include at least the functions LoadLibrary and GetProcAddress, which are used to load and gain access to additional functions.
Dynamic Analysis
Windows Legitimate Processes
Malware Analysis Notes
Static Analysis
Dynamic Analysis
Windows Legitimate Processes
Persecure : my learning archive 