Episode
Malware Hunting
with Mark Russinovich
Mark provides an overview of several Sysinternals tools, including Process Monitor, Process Explorer, Autoruns and the new Sysmon tool, focusing on the features useful for malware analysis and removal. These utilities enable deep inspection and control of processes, file system and registry activity, and autostart execution points. He demonstrates their malware-hunting capabilities by presenting several current, real-world malware samples and using the tools to identify and clean malware.
Mark provides an overview of several Sysinternals tools, including Process Monitor, Process Explorer, Autoruns and the new Sysmon tool, focusing on the features useful for malware analysis and removal. These utilities enable deep inspection and control of processes, file system and registry activity, and autostart execution points. He demonstrates their malware-hunting capabilities by presenting several current, real-world malware samples and using the tools to identify and clean malware.
Have feedback? Submit an issue here.