2 posts tagged with "PE (Portable Executable)"

A PE is the format used by Windows operating systems to store executable files, including applications, drivers, and system binaries. The PE file format includes metadata about the program's code, data, and resources, as well as a header that describes the file's structure and layout.

View All Tags

THM | Windows Internals

January 12, 2025 · 14 min read

Malware Analysis | Windows Internals | Summary:

This room aims to provide an in-depth exploration of Windows operating system internals and common components. Important concepts like Processes, Threads, Virtual Memory, DLLs, PE and the Window API are introduced.

THM | Intro to Malware Analysis

January 12, 2025 · 8 min read

Malware Analysis | Intro to Malware Analysis | Summary:

The aim of this room is to provide SOC analysts with steps to determine whether suspicious content (files or traffic) is malicious or not. It will cover the basics of malware, how to start analyzing it, and different analysis methods, as well as resources for further assistance.

Malware Analysis | Windows Internals | Summary:​

Malware Analysis | Intro to Malware Analysis | Summary:​

Malware Analysis | Windows Internals | Summary:

Malware Analysis | Intro to Malware Analysis | Summary: