Obtaining samples

Within this course, the practice exercises and live malware samples served as samples to analyse. When experimenting beyond this course, additional samples are needed. Depending on the goal of the analysis, the analyst’s experience and the preferred type of sample to analyse, different types and formats are required.

Within this chapter, multiple methods to obtain samples are given. Whereas some methods can be used for multiple goals, others focus on a single goal. Obtaining new malware samples as fast as possible is a different goal than obtaining an intriguing sample that is written in a specific language.