Getting Started with PeView

Read Lab Instruction

Scenario: You are tasked with performing static analysis on a flagged sample.

Tool: PEView

Question 1: Running the sample to PEView, can you identify the sample’s file type? 

Question 2: Can you identify the time and date when was the sample was created?

Question 3: Extract the Entry Point, Image Base Address, System.

Question 4: Identify the modules used by the sample. 

Question 5: Can you identify the type of malware?

#note: Use a separate isolated machine to perform this task.