Malware Analysis Foundations
RCCE students will learn the core workflows of safe malware triage and analysis including containment, sample handling, static review, dynamic observation, indicator extraction, and reporting. RCCE students will learn to establish secure analysis environments, classify malware behavior, identify persistence methods, review suspicious strings and imports, trace network activity, and communicate findings to defenders. The course covers practical scenarios ranging from initial triage to behavioral understanding and defensive action. RCCE students will learn to analyze complex systems and think like an attacker to better defend the organization. This comprehensive course delivers practical knowledge applicable to real-world cybersecurity operations. Starting from foundational concepts, RCCE students will learn through a combination of concept explanation, practical demonstration, and hands-on exercises.
- Security Engineers building defensive controls
- Security Analysts and Blue Team members
- Systems Administrators with security responsibilities
- GRC and Risk Professionals supporting controls
- Professionals implementing Malware Analysis Foundations
- Explain Malware Analysis Foundations fundamentals
- Explain Course Overview fundamentals
- Execute hands-on tasks for what you will learn
- Execute hands-on tasks for course structure — covering Safe malware triage and analysis workflows, Concept explanation with real scenarios.
- Execute hands-on tasks for target outcomes — covering Establish secure analysis environments independently.
- Execute hands-on tasks for topic map – 18 core domains
- Execute hands-on tasks for 01 safe analysis environments
- Execute hands-on tasks for 02 malware classification
- Execute hands-on tasks for 03 sample acquisition & handling
- Execute hands-on tasks for 04 initial triage workflows
- Execute hands-on tasks for 05 static analysis fundamentals
- Execute hands-on tasks for 06 string & import analysis
| Module 01 | Malware Analysis Foundations |
| Module 02 | Course Overview |
| Module 03 | What You Will Learn |
| Module 04 | Course Structure |
| Module 05 | Target Outcomes |
| Module 06 | Topic Map – 18 Core Domains |
| Module 07 | 01 Safe Analysis Environments |
| Module 08 | 02 Malware Classification |
| Module 09 | 03 Sample Acquisition & Handling |
| Module 10 | 04 Initial Triage Workflows |
| Module 11 | 05 Static Analysis Fundamentals |
| Module 12 | 06 String & Import Analysis |
| Module 13 | 08 Dynamic Analysis Methods |
| Module 14 | 09 Behavioral Monitoring |
All hands-on labs run on Rocheston Rose X OS. Students practice malware analysis foundations by implementing the controls discussed in class, with a focus on real-world deployment, monitoring, and validation.
- Lab 1: Explain Malware Analysis Foundations fundamentals
- Lab 2: Explain Course Overview fundamentals
- Lab 3: Execute hands-on tasks for what you will learn
- Lab 4: Execute hands-on tasks for course structure
- Lab 5: Execute hands-on tasks for target outcomes
Upon successful completion of this course, students will receive an official RCCE Course Completion Certificate for Malware Analysis Foundations, verifiable through the Rocheston certification portal.
- Full access to all course materials and slide decks
- Hands-on lab access on Rocheston Rose X OS environment
- Access to Rocheston CyberNotes
- Access to Rocheston Zelfire — EDR/XDR SIEM platform
- Access to Rocheston Raven — online cyber range exercise platform
- Access to Rocheston Vulnerability Vines AI