performing-static-malware-analysis-with-pe-studio
mukul975/Anthropic-Cybersecurity-Skills
A comprehensive guide for performing static analysis of Windows Portable Executable (PE) files using tools like PEStudio and scripting libraries. This technique examines file headers, calculates section entropy, identifies suspicious API calls (e.g., process injection, persistence), and extracts obfuscated strings and Indicators of Compromise (IoCs) without executing the sample, making it a crucial step in malware triage and reverse engineering.