This article has been published on the 2nd of June 2019.
In the previous chapters, information has been given regarding architectures, assembly language, file types and malware samples. In each of those chapters, each article provided step-by-step guidelines which explained the decisions that were taken.
In a sense, this chapter is a bit different. The step-by-step explanations will not be changed, as that is vital during the learning process. In this chapter, the focus will be put on what you should look for during the analysis of an unknown sample.
Reading blogs, reports from the news, Twitter, Reddit, and other sources is rather helpful, but still requires the reader to figure out what the common techniques are. In this chapter, common techniques for multiple platforms will be explained, as the approach for some platforms differs from another. Using the mindset of the previous chapters and the knowledge in this chapter, it should be easier to start the analysis of a random sample.
Tips and tricks on where to find other samples can be found in the next chapter: obtaining samples.