A. Mohanta, A. SaldanhaMalware Analysis and Detection Engineeringhttps://doi.org/10.1007/978-1-4842-6193-4_4

4. Virtual Memory and the Portable Executable (PE) File

Abhijit Mohanta¹ and Anoop Saldanha²

(1)

Independent Cybersecurity Consultant, Bhubaneswar, Odisha, India

(2)

Independent Cybersecurity Consultant, Mangalore, Karnataka, India

A process is defined as a program under execution. Whether a program is clean or malicious, it needs to execute as a process to carry out its desired intention. In this chapter, we go through the various steps involved in loading a program as a process. We also explore the various components of a process and understand important concepts like virtual memory, which is a memory-related ...

Get Malware Analysis and Detection Engineering: A Comprehensive Approach to Detect and Analyze Modern Malware now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Malware Analysis and Detection Engineering: A Comprehensive Approach to Detect and Analyze Modern Malware by Abhijit Mohanta, Anoop Saldanha

4. Virtual Memory and the Portable Executable (PE) File

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly