Assignment task:
Upon completing this lab, students will be able to achieve the following learning objectives:
1. Write YARA rules (signatures) and use them to scan against some selected files, analyze the contents of files, and identify files that meet certain conditions or classify malware samples.
2. Analyze a collection of files to match to automatically suggest optimal binary subsequences to act as rule triggers and incorporate a YARA signature into test cases to identify malware.
3. Examine pattern matching capabilities and functions of the tool to identify potential malware and define countermeasures or controls to mitigate identified intrusions.
4. Develop a lab experience report based on your analysis and findings as part of your project report.