None
Course Number:
CSCI 4635
Approved Starting Semester:
Fall 2025
Course Title:
Malware Analysis and Countermeasures
Course Description (Bulletin Description):
This course covers the fundamentals of malware analysis and countermeasures. Topics include: anti-malware analysis techniques, debugging concepts and tools, an examination of malware behavior, network indicators and malware countermeasures. Students will learn how to detect, analyze, reverse-engineer and eradicate malware. Real-world examples of malware will be studied.
Prerequisite:
CSCI 4200 and (CSCI 2010 or CSCI 2000)
Co-requisite:
None
Pre/Co-requisite::
None
Dual-Listed:
CSCI 5635
Course Objectives (Course-level Student Learning Outcomes):
Upon successful completion of this course: 1. Students will be able to apply the tools and methodologies used to perform static and dynamic analysis on unknown executable(s). 2. Students will know how to infer the functionality of a program by analyzing disassembly and observing the changes on the system as it runs. 3. How to extract investigative leads from host and network-based indicators associated with a malicious program; and how to identify specific coding constructs in disassembly 4. Students will also know the art of dynamic analysis and about Windows APIs most often used by malware authors.
Topics Covered (In Outline/Calendar):
1. Basic Static Analysis, Basic Dynamic Analysis Basic Static Analysis 2. x86, IDA, Code Constructs 3. WinAPI, Handles, Windows Internals, Networking, CODE 4. Debugging Concepts and Tools 5. Malicious Activities and Techniques 6. Hiding Data, Malware Countermeasures, 7. Covert Launching and Execution 8. Anti Disassembly, VM, Debugging, AV 9. Packers, Packing, and Unpacking 10. Kernel Basics, Windows Kernel API, Windows Drivers, Kernel Debugging 11. Hooking, Patching, Kernel Object Manipulation 12. Covert Channels, AntiForensic
Student Learning Outcomes:
- Analyze a complex computing problem and to apply principles of computing and other relevant disciplines to identify solutions. (SLO1)
- Design, implement, and evaluate a computing-based solution to meet a given set of computing requirements in the context of the program’s discipline. (SLO2)
Course Coordinator:
Mr. Barry Bruster
Instructor-in-charge:
Mr. Barry Bruster
Previous Professors:
Mr. Barry Bruster
Technologies / Skills:
anti-malware analysis techniques
Textbook(s):
Fall 2025
Title: LEARNING MALWARE ANALYSIS
Edition: 18
Author: MONNAPPA
Publisher: PACKT PUB
ISBN: 9781788397520
---------------------------------
Title: Practical Malware Analysis: The Hands-On Guide to Dissecting Malicious Software
Edition: 1
Publisher: No Starch Press
Author: Sikorski
ISBN: 9781593272906
========================================
Go back to choose another course