Performing Malware Analysis on Malicious Documents

by Tyler Hudak

Malicious documents have become a form of malware that all incident responders need to be able to analyze. This course will teach you how to analyze malicious Adobe PDF and Microsoft Office documents, along with any malicious scripts they contain.

Start FREE course Preview this course

What you'll learn

Hiding malware within documents has become one the main methods attackers use to compromise systems. In this course, Performing Malware Analysis on Malicious Documents, you will learn how to look at documents to determine if they contain malware, and if so, what that malware does. First, you will explore how to analyze malicious Adobe PDF and Microsoft Office documents. Next, you will discover how attackers obfuscate scripts within malicious documents, and how you can defeat that obfuscation to determine the script’s purpose. Finally, you will dive into the tools required to perform this analysis safely and quickly. When you’re finished with this course, you will have the skills and knowledge needed to perform malware analysis on malicious documents.

Table of contents

Course Overview
2mins
Introduction and Setting up Your Lab
15mins
Performing Document Analysis
23mins
Analyzing PDF Documents
26mins
Performing JavaScript Analysis
27mins
PDF Lab
10mins
Analyzing Office Documents
19mins
Performing VBA Script Analysis
19mins
Quickly Analyzing Malicious Documents
16mins
Office Document Lab
13mins
Analyzing Malicious Documents Recap
9mins

About the author

Tyler Hudak

Tyler Hudak has more than 15 years of experience performing malware analysis, computer forensics, and incident response for multiple organizations. He loves sharing the knowledge he has gained on these topics in his presentations and classes!

See more courses by Tyler Hudak

Trending courses

Linux: System Security (LPIC-2)

Linux: System Security (LPIC-2)

by Andrew Mallett
  • 3h 6m Duration
  • Intermediate Skills Level
  • (16)
Expanded
Information Systems Auditor: Operations, Maintenance, and Service

Information Systems Auditor: Operations, Maintenance, and Service

by Kevin Henry
  • 3h 6m Duration
  • Intermediate Skills Level
  • (12)
Expanded
Network Interface Layer and Ethernet Operation for Cisco CCNA 200-125/100-105

Network Interface Layer and Ethernet Operation for Cisco CCNA 200-125/100-105

by Ross Bagurdes
  • 3h 5m Duration
  • Intermediate Skills Level
  • (53)
Building Packet Tracer Labs for CCNA Study: Fundamentals

Building Packet Tracer Labs for CCNA Study: Fundamentals

by Ross Bagurdes
  • 5h 20m Duration
  • Intermediate Skills Level
  • (12)
STP and EtherChannel Operation and Configuration

STP and EtherChannel Operation and Configuration

by Ross Bagurdes
  • 2h 46m Duration
  • Intermediate Skills Level
  • (14)
SCCM Current Branch: Deploy Clients and Manage Inventory

SCCM Current Branch: Deploy Clients and Manage Inventory

by Greg Shields
  • 3h 15m Duration
  • Intermediate Skills Level
  • (27)
SCCM Current Branch: Deploy and Maintain Operating Systems

SCCM Current Branch: Deploy and Maintain Operating Systems

by Greg Shields
  • 4h 15m Duration
  • Intermediate Skills Level
  • (20)
Managing Software in Linux with Debian Software Management

Managing Software in Linux with Debian Software Management

by Andrew Mallett
  • 1h 58m Duration
  • Beginner Skills Level
  • (23)
Securing the Switch

Securing the Switch

by Ross Bagurdes
  • 2h 25m Duration
  • Intermediate Skills Level
  • (13)
Conducting Passive Reconnaissance for CompTIA PenTest+

Conducting Passive Reconnaissance for CompTIA PenTest+

by Dale Meredith
  • 3h 1m Duration
  • Beginner Skills Level
  • (34)
Ready to upskill? Get started