Review of Windows 7 as a Malware Analysis Environment

by Adam Kramer
Sept. 1, 2017 0 comments SANS Institute forensics

The SANS course “FOR610 – Reverse Engineering of Malware” is designed around the use of Windows XP as a malware analysis environment. Mainstream support for this operating system ended over 4 years ago and for those with extended support contracts, these are due to end April 2014. This will prompt both enterprises and home users to consider the transition to a newer version of Windows which has ongoing support and regular updates. As users transition, the malware and therefore analyst will need to follow. In order to be ahead of the game and ready for the coming changes we will look at how each of many of the main tools used by malware analysis perform under Windows 7 x64 detailing any issues encountered and giving consideration to possible solutions.