We're offering 20% off September Live Online classes! See which courses are applicable.   |   Details

AccountIcon BigDataIcon BlogIcon default_resource_icon CartIcon checkmark_icon cloud_devops_icon computer_network_admin_icon cyber_security_icon gsa_schedule_icon human_resources_icon location_icon phone_icon plus_icon programming_software_icon project_management_icon redhat_linux_icon search_icon sonography_icon sql_database_icon webinar_icon

Search UMBC Training Centers


Malware Triage

Group Training + View more dates & times


Malware Triage was developed to provide students with a comprehensive hands-on exposure to the processes, tools and procedures used to identify common types of malware and to quickly determine their capabilities and threat level. This course teaches students concepts and methods involved in finding, analyzing and characterizing malware to determine how severe of a threat it may pose within a system or network. The course includes significant amounts of hands-on practical application of skills learned. Students are introduced to topics and concepts through lectures then given a series of lab exercises to reinforce that learning and build skill. Students must exercise the malware analysis methodology and conduct open source research of characteristics identified in order to successfully complete the goals of the course.

Who Should Take This Course


Students attending the course should have a strong understanding of how data traverses a network, basic UNIX and Windows competency, and comfort working from the command line. Additionally, understanding of information assurance principles and penetration testing methodology are strongly recommended.

Course Outline


  • Malware Overview
  • Introduction to Malware Identification
  • Process List Analysis
  • Suspicious Processes
  • Netstat, Open Port and Connection Analysis
  • Handles to Files and Other Resources
  • Suspicious .dlls and Drivers
  • Common Persistence Techniques
  • Rootkit Detection
  • Determining Network Awareness
  • Determining Other Capabilities (hiding, keyboard logging, taking screenshots)
  • Code Analysis Triage (Hex Editor)
  • Online Malware Capability & Signature Research”
Is there a discount available for current students?

UMBC students and alumni, as well as students who have previously taken a public training course with UMBC Training Centers are eligible for a 10% discount, capped at $250. Please provide a copy of your UMBC student ID or an unofficial transcript or the name of the UMBC Training Centers course you have completed. Asynchronous courses are excluded from this offer.

What is the cancellation and refund policy?

Student will receive a refund of paid registration fees only if UMBC Training Centers receives a notice of cancellation at least 10 business days prior to the class start date for classes or the exam date for exams.

Contact Us