Incident Handling Hands-on Scenario & Malware Analysis


  1. To practice the incident handling knowledge
  2. To learn fundamental malware analysis skills
  3. To explore new tools and analysis techniques
  4. To examine and understand the behavior of unknown binary
  5. To assess malware threats and eradicate infections


  1. Computer network incident handling and incident responder professionals
  2. Computer security incident response team members and technical staff
  3. System and network administrators with incident handling experience
  4. X-Maya participants
  5. NC4 players

Incident Handling - Hands-on Scenario

  1. Scenario 1: Email
    • Malicious Email
    • Phishing Email
    • Harassing Email
  2. Scenario 2: Intrusion
    • Web Defacement
  3. Scenario 3: Social Media
    • Impersonation/Fake Profile
  4. Scenario 4: DDoS Analysis
    • Classification of Incident
    • Verify if the DDoS continues or has stopped
    • Identify Victim's ISP
    • Log Analysis
Introduction to Tools for Malware Analysis
  1. Tools for Basic Information Gathering
    • Including hashes, timestamp, etc.
  2. Monitoring Tools for Windows Malware
  3. Understanding File Formats and Identifying File Contents
    • Covering packer, malware persistence, DNS, etc.
  4. Online Malware Sandbos Analysis

Malware Analysis on Real Malware Samples
  1. Analyzing and Observing the Following Malware:
    • Computer Worm
    • Rogue AV / Fake AV
    • Ransomware
    • Trojan Horses
    • Crypto-mining Malware
    • Router Malware (Mirai)
    • Parasitic File Infector
    • Browser Based Malware
    • Rootkits
    • File-less Infection
    • Botnet / Backdoor
    • Macro Viruses
    • Keyloggers
Practical Malware Analysis
  1. Preparing Technical Report
  2. Threat Hunting Challenge in Grouping

Pn. Sharifah Roziah Bt Mohd Kassim
Malaysian Computer Emergency Response Team (MYCERT)
CyberSecurity Malaysia

Sharifah Roziah currently works as a Specialist for Malaysia Computer Emergency and Response Team (MyCERT) under the umbrella of CyberSecurity Malaysia. Besides being a Specialist, she is also tasked as a Manager of the Security Operation Centre in MyCERT, to ensure computer security incidents reported to MyCERT are responded in a timely and efficient manner. Prior to that, she worked as an Senior Analyst at MyCERT department. Roziah has been involved in the computer security field for over 20 years, mainly in Computer Security Incident Handling. Her area of focus and interest is on Computer Security Incident Handling, Cyber Threat Intelligence and research in these fields. Roziah had been a key person in handling and resolving many computer security incidents reported to MyCERT from the Malaysia constituency. She had also conducted several talks, presentations, trainings in local and in international in the field of computer security particularly in Computer Security Incident Handling. Apart from that, Roziah has also written several journal and conference proceedings articles with her peers.

Pn. Kilausuria Bt Abdullah
Senior Analyst
Malaysian Computer Emergency Response Team (MYCERT)
CyberSecurity Malaysia

Kilausuria works as a Senior Analyst for Malaysia Computer Emergency and Response Team (MyCERT). Previously she was involved as a researcher in areas of IDS, IPS, Firewall, Open Source, CEWS and Cloud Computing Technology at MIMOS BERHAD. She has been involved in the Computer Security Incident Handling for CYBER999 services as 2nd Level Incident Handling Support. She also provides 1st level support and mitigating action by escalating cases to relevant parties. Besides that, as 2nd Level Incident Handling Support, she focused more on Computer Security Incident that involved monitoring and response to network intrusion, log analysis, data analysis, and trend analysis. She also produced Security Advisories and Alerts, Summary Report, Articles, Security Guidelines, and Proceeding Paper related to computer security. She had also conducted many talks, presentations, trainings(local) in the field of computer security particularly in Computer Security Incident Handling.

Her certifications include MSc Computer Science (Information Security), GIAC Certified Incident Handler (GCIH) , GIAC Certified System and Network Auditor (GSNA) and CompTIA Cybersecurity Analyst (CySA+).

En. Nur Mohammad Kamil Bin Mohammad Alta
Senior Analyst
Malaysian Computer Emergency Response Team (MYCERT)
CyberSecurity Malaysia

Kamil is an experienced Malware Analyst at Malaysian Computer Emergency Response Team (MyCERT), CyberSecurity Malaysia. He is certified in various professional certification including GIAC Certified Reverse Engineering Malware (GREM), GIAC Certified Forensic Examiner (GCFE) and EC-Council Certified Ethical Hacker (CEH).

Kamil has been working with the CyberSecurity Malaysia since 2009. He is responsible for the daily operation of analysing malware, reverse code engineering, debugging, web security, network security, system development and automation.

Kamil's also involves in several high-profile incident from different sector including law enforcement, government and private sector. He is also involved in various global cyber security initiatives such as the Open Source Development Group and the Honeynet Project. Some of his recent work is in the area of malware analysis, distributed honeynet, independent trainer, capture the flag (CTF) events and cyber drill exercise events.


  • 16 - 19 January 2023
  • 8 - 11 May 2023
  • 3 - 6 July 2023
*dates are tentative, unless specified
*Capital Market Cyber Simulation training dates will be announced by Securities Commission Malaysia

MYR3,800.00 (subject to 8% SST)

Please click here to register

Contact us to request for a quotation

24 CPD Point

Please submit the Certificate of Completion to Global ACE Certification at


Have any inquiries? Check out the FAQ