Before performing dynamic analysis, it is essential to understand the tools that you will use to monitor the malware's behavior. In this chapter and throughout this book, various malware analysis tools will be covered. If you have setup your lab environment as described in Chapter 1, you can download these tools to your host machine and then transfer/install those tools to your virtual machines and take a new, clean snapshot.

This section covers various dynamic analysis tools and some of their features. Later in this chapter, you will understand how to use these tools to monitor the behavior of the malware while it is executing. You will need to run these tools with administrator privileges; this can be done by right-clicking on the executable and selecting Run as administrator. While you are reading, it is recommended that you run these tools and get familiar with their features.