How do you identify abnormal or malicious behavior?

Reference: https://marksforensicblog.wordpress.com/ Malware, in general, has four main characteristics: 1. An initial infection vector – how it got on the system in the first place; this can be through browser download, email attachment, etc. 2. Artifacts – what actions does the malware take upon infection and what footprints does it leave? It’s sufficient and quicker […]

Read More

What is the difference between a Virus, a Worm, and a Trojan?

A virus is a piece of code (for example, a program or a script) that an end user executes. A worm, however, can infect a system or propagate to other systems without intervention from the end user.  A computer worm is a self-replicating computer program that penetrates an operating system with the intent of spreading […]

Read More