dhcybsec256/Malware-Analysis-Project

# Malware-Analysis-Project ## Overview Static and dynamic analysis of two real-world malware samples to identify malicious behaviour, extract indicators of compromise (IOCs), and document adversary techniques. Findings were compiled into a formal analysis report. ## Tools Used | Tool | Purpose | |------|---------| | Ghidra | Static analysis & reverse engineering | | Process Monitor | Runtime process & file system monitoring | | Process Hacker | Live process inspection & memory analysis | | Regshot | Registry & filesystem snapshot comparison | | Wireshark | Network traffic capture & analysis | ## Methodology ### Sample 1 — Static Analysis Reverse engineered a real-world malware binary using Ghidra to identify imported functions, suspicious API calls, and program logic without execution. ### Sample 2 — Dynamic Analysis Executed a second real-world sample in an isolated environment and monitored runtime behaviour across process activity, registry changes, filesystem modifications, and network traffic.