Investigating Malware Using Registry Forensics

Investigating Malware Using Registry Forensics

via YouTube Direct link

The Windows Registry

4 of 21

4 of 21

The Windows Registry

Class Central Classrooms beta

YouTube videos curated by Class Central.

Classroom Contents

Investigating Malware Using Registry Forensics

Automatically move to the next video in the Classroom when playback concludes

  1. 1 Intro
  2. 2 Outline
  3. 3 Why the Registry?
  4. 4 The Windows Registry
  5. 5 Progression of the Registry
  6. 6 Registry Terminology
  7. 7 Primary Hives Comprising the Registry
  8. 8 What can Registry Analysis Help Answer?
  9. 9 Detection: MuiCache
  10. 10 Detection: AppCompatCache
  11. 11 AppCompatCache Volatility Plugin
  12. 12 Detection: Amcache.hve
  13. 13 Amcache.hve Data
  14. 14 Detection: UserAssist
  15. 15 Detection: Recent Apps
  16. 16 Persistence
  17. 17 More Fun: Unicode RLO Character
  18. 18 More Fun: Large Registry Values
  19. 19 Investigation: Shellbags
  20. 20 Investigation: Activity
  21. 21 Conclusion

Never Stop Learning.

Get personalized course recommendations, track subjects and courses with reminders, and more.

Someone learning on their laptop while sitting on the floor.