File analysis is used to inspect files to ensure it’s safe. The most commonly used technique is strings extraction. Strings are characters that are embedded within a file and extracting this information provides insight into functionality. Strings created by a malware for example can have information like URLs, registry keys, attack commands, and IP addresses. While it doesn’t provide the full picture, it gives enough information to give hint about what the malware can do. Many security analysts uses a tool called Virustotal, which helps analyze suspicious files and URLs. It’s a free service that allows you to upload files and provides real time detailed results. The analysis will be shared with multiple Virustotal partners and will help raise global security level. It also has features that allows users to comment on files and URLs, sharing notes with each other and better help identify false positives.
HansITAcademy 
You must be logged in to post a comment.