How to Analyze a Malicious Powershell Script & Fileless Malware

Threat actors make their code as difficult to read as possible to bypass defenses and frustrate analysis. This video includes some useful tools and techniques to assist defenders in deobfuscating malicious PowerShell scripts. Additional information on the tools and techniques used are included in the resource section of the video. https://community.sophos.com/sophos-labs/b/blog/posts/decoding-malicious-powershell https://gchq.github.io/CyberChef/ CHAPTERS: 00:00 Introduction 01:02 1. First Example 02:15 2. Decoding part 03:15 3. Using another method 05:30 4. Second Example 10:30 5. Conclusion