On Teaching Malware Analysis on Latest Windows

Lan Luo; Cliff Zou; Sashan Narain; Xinwen Fu

doi:10.53735/cisse.v9i1.152

Vol. 9 No. 1 (2022), Articles

Vol. 9 No. 1 (2022)

On Teaching Malware Analysis on Latest Windows

Articles

DOI: 10.53735/cisse.v9i1.152

Published 2022-03-08

Lan Luo⁺⁻
Cliff Zou⁺⁻
Sashan Narain⁺⁻
Xinwen Fu⁺⁻

Lan Luo

Dept. of Computer Science, University of Central Florida

Cliff Zou

Dept. of Computer Science, University of Central Florida

Sashan Narain

Dept. of Computer Science, University of Massachusetts

Xinwen Fu

Dept. of Computer Science, University of Massachusetts

PDF

Keywords

malware analysis
Windows
VM
XCP-ng

Abstract

Microsoft Windows operating systems are the most popular desktop operating systems. 83% of malware attacks target Windows. Windows 10 has a market share of 78.45% out of all Windows versions on the market. However, we find security related courses are often taught on Linux or run on older Windows versions. In this paper, we present our practice of teaching malware analysis on the latest Windows (10). We are among the first using the latest Windows (10) for teaching malware analysis. We design the labs and assignments on the pre-configured Windows 10 VM supplemented by the Kali VM. A virtual Cyber Range is created for students to access the two VMs over a cloud. We present our curriculum and learning assessment scheme. Our practice has been validated through surveys on both face-to-face and online classes.

PDF

Open Access License Notice:
This article is © its author(s) and licensed under the Creative Commons Attribution 4.0 International License (CC BY 4.0), regardless of any copyright or pricing statements appearing in the PDF. The PDF reflects formatting used for the print edition and not the current open access licensing policy.