Course 20 - Malware Analysis: Identifying and Defeating Code Obfuscation | Episode 4: Dynamic API Resolution: Walking the PEB and Parsing
This episode of CyberCode Academy covers dynamic API resolution techniques used by malware to hide API usage from analysis tools. It details how malware bypasses import tables, resolves APIs via the PEB and manual PE parsing, and uses checksum-based methods and indirect…