This compressed experimental file is copied from the internet, and now you see the owner of this repositories does not guarantee that the file and the original book published by the author of the same.
After all, because nobody did know the reason, the author of this book code repositories contains only one exe file and 7z file, and if you decompressed the 7z file, it will show the same exe file as the another.
So the chapter after the practice, you can NOT find (at least I can NOT find).
The file structure like blow:
PracticalMalwareAnalysis-Labs.tar.gz
├── Practical Malware Analysis Labs
│ ├── BinaryCollection
| | ├── Chapter_1L
│ │ │ ├── Lab01-01.dll
│ │ │ ├── Lab01-01.exe
│ │ │ ├── Lab01-02.exe
│ │ │ ├── Lab01-03.exe
│ │ │ └── Lab01-04.exe
│ │ ├── Chapter_2L
│ │ │ ├── NULL
│ │ ├── Chapter_3L
│ │ │ ├── Lab03-01.exe
│ │ │ ├── Lab03-02.dll
│ │ │ ├── Lab03-03.exe
│ │ │ └── Lab03-04.exe
│ │ ├── Chapter_4L
│ │ │ ├── NULL
│ │ ├── Chapter_5L
│ │ │ ├── Lab05-01.dll
│ │ │ └── Lab05-01.py
│ │ ├── Chapter_6L
│ │ │ ├── Lab06-01.exe
│ │ │ ├── Lab06-02.exe
│ │ │ ├── Lab06-03.exe
│ │ │ └── Lab06-04.exe
│ │ ├── Chapter_7L
│ │ │ ├── Lab07_01.exe
│ │ │ ├── Lab07-02.exe
│ │ │ ├── Lab07-03.dll
│ │ │ └── Lab07-03.exe
│ │ ├── Chapter_8L
│ │ │ ├── NULL
│ │ ├── Chapter_9L
│ │ | ├── DLL1.dll
│ │ | ├── DLL2.dll
│ │ | ├── DLL3.dll
│ │ | ├── Lab09-01.exe
│ │ | ├── Lab09-02.exe
│ │ | └── Lab09-03.exe
│ │ ├── Chapter_10L
│ │ │ ├── Lab10-01.exe
│ │ │ ├── Lab10-01.sys
│ │ │ ├── Lab10-02.exe
│ │ │ ├── Lab10-03.exe
│ │ │ └── Lab10-03.sys
│ │ ├── Chapter_11L
│ │ │ ├── Lab11-01.exe
│ │ │ ├── Lab11-02.dll
│ │ │ ├── Lab11-02.ini
│ │ │ ├── Lab11-03.dll
│ │ │ └── Lab11-03.exe
│ │ ├── Chapter_12L
│ │ │ ├── Lab12-01.dll
│ │ │ ├── Lab12-01.exe
│ │ │ ├── Lab12-02.exe
│ │ │ ├── Lab12-03.exe
│ │ │ └── Lab12-04.exe
│ │ ├── Chapter_13L
│ │ │ ├── Lab13-01.exe
│ │ │ ├── Lab13-02.exe
│ │ │ └── Lab13-03.exe
│ │ ├── Chapter_14L
│ │ │ ├── Lab14-01.exe
│ │ │ ├── Lab14-02.exe
│ │ │ └── Lab14-03.exe
│ │ ├── Chapter_15L
│ │ │ ├── Lab15-01.exe
│ │ │ ├── Lab15-02.exe
│ │ │ └── Lab15-03.exe
│ │ ├── Chapter_16L
│ │ │ ├── Lab16-01.exe
│ │ │ ├── Lab16-02.exe
│ │ │ └── Lab16-03.exe
│ │ ├── Chapter_17L
│ │ │ ├── findAntiVM.py
│ │ │ ├── Lab17-01.exe
│ │ │ ├── Lab17-02.dll
│ │ │ └── Lab17-03.exe
│ │ ├── Chapter_18L
│ │ │ ├── Lab18-01.exe
│ │ │ ├── Lab18-02.exe
│ │ │ ├── Lab18-03.exe
│ │ │ ├── Lab18-04.exe
│ │ │ └── Lab18_05.exe
│ │ ├── Chapter_19L
│ │ │ ├── Lab19-01.bin
│ │ │ ├── Lab19-02.exe
│ │ │ ├── Lab19-03.pdf
│ │ │ ├── Lab19-03_sc.bin
│ │ │ └── shellcode_launcher.exe
│ │ ├── Chapter_20L
│ │ │ ├── config.dat
│ │ │ ├── Lab20-01.exe
│ │ │ ├── Lab20-02.exe
│ │ │ └── Lab20-03.exe
│ │ └── Chapter_21L
│ │ ├── Lab21-01.exe
│ │ └── Lab21-02.exe
│ ├── EULA.docx
│ └── Hashes.csv
└── PracticalMalwareAnalysis-Labs.exe
If you think you are luck enough, this is riginal author github address is here:
Also, if you speak Chinese, you can look my blog at:
I will share the analysis about the book practice.
Happy to see you in there.
The lab binaries contain malicious code and you should not install or run these programs without first setting up a safe environment.
The labs are targeted for the Microsoft Windows XP operating system. Many of the labs work on newer versions of Windows, but some of them will not. The labs are designed to mimic realistic malware. Some of them are well-written code that runs reliable and some of them (just like real malware) are poorly written code that may crash, contain memory leaks, or otherwise behave unexpectedly.
The following documents are related to the agreement.
=========
PLEASE READ THE TERMS AND CONDITIONS OF THIS LICENSE AGREEMENT CAREFULLY BEFORE CONTINUING WITH THIS PROGRAM EXTRACTION: Binaries Distributed with [Practical Malware Analysis] End-User License Agreement ("EULA") is a legal agreement between You and the Copyright holders of the Book [Practical Malware Analysis] for the software product(s) Binaries Distributed with [Practical Malware Analysis] - (referred to herein as "SOFTWARE PRODUCT") which may include associated software components, media, and "online" or electronic documentation. By installing or otherwise using the SOFTWARE PRODUCT, You agree to be bound by the terms of this EULA, which represents the entire agreement concerning the program between You (also referred to as "End-User") and the Copyright holders of the Book [Practical Malware Analysis], (referred to herein as "Licensor"). Download, extraction, installation, or use of the SOFTWARE PRODUCT constitutes acceptance of these terms and/or agreement that they are binding on You. Licensor reserves all rights not expressly granted to You.
The SOFTWARE PRODUCT is protected by copyright laws and international copyright treaties, as well as other intellectual property laws and treaties. The SOFTWARE PRODUCT is licensed, not sold. This license granted to You for the SOFTWARE PRODUCT by Licensor is limited to a non-transferable license to use the SOFTWARE PRODUCT on any computer that You own or control. This license does not allow You to use the SOFTWARE PRODUCT on any computer that You do not own or control, and You may not distribute or make the SOFTWARE PRODUCT available over a network where it could be used by multiple computers at the same time. You may not rent, lease, lend, sell, redistribute or sublicense the SOFTWARE PRODUCT. You may not copy (except as expressly permitted by this EULA), modify, or create derivative works of the SOFTWARE PRODUCT.
=========
The SOFTWARE PRODUCT contains dangerous malicious computer code that will cause damage to Your or others computers and/or networks if not used properly. Licensor is not responsible for the misuse or accidental misuse of this SOFTWARE PRODUCT and the End-User accepts all responsibility for any damage incurred by the End-User.
The SOFTWARE PRODUCT should not be run without a safe environment that can easily be restored to a prior state, such as a virtual machine. The End-User agrees that in no case shall the SOFTWARE PRODUCT be used by the End-User on production systems or systems that contain sensitive or valuable information.
The End-User agrees that the SOFTWARE PRODUCT will not be used on systems connected to the Internet due to the risks posed to the machine running the SOFTWARE PRODUCT as well as the risks posed to the greater Internet.
===============
Licensor grants You the right to install and use copies of the SOFTWARE PRODUCT on Your computer running a validly licensed copy of the operating system for which the SOFTWARE PRODUCT was designed [e.g., Windows 95, Windows NT, Windows 98, Windows 2000, Windows 2003, Windows XP, Windows ME, Windows Vista].
=====================================
The End-User agrees to not remove or alter any copyright notices on any and all copies of the SOFTWARE PRODUCT.
The End-User agrees to not redistribute copies of the SOFTWARE PRODUCT to third parties.
Licensor does not provide any support services related to the SOFTWARE PRODUCT.
The End-User agrees to comply with all applicable federal, state, local, local country, and international agreements/treaties/laws regarding use of the SOFTWARE PRODUCT.
Use of the SOFTWARE PRODUCT for instructor-led training is prohibited without expressed written consent from Licensor.
Modifications must not be made to the SOFTWARE PRODUCT. By downloading, extracting, and installing the SOFTWARE PRODUCT, the end-user agrees that they will not modify the SOFTWARE PRODUCT.
The SOFTWARE PRODUCT is meant for use with learning in conjunction with the [Practical Malware Analysis] book for educational purposes only. The End-User agrees to use the SOFTWARE PRODUCT for educational purposes only.
============
The EULA is effective until terminated by You or Licensor. Your rights under this license will terminate automatically without notice from Licensor if You fail to comply with any term(s) of this EULA. Upon termination of the license, You shall cease all use of the SOFTWARE PRODUCT, and destroy all copies, full or partial, of the SOFTWARE PRODUCT.
===================
You agree that the SOFTWARE PRODUCT contains proprietary content, information and material that is protected by applicable intellectual property and other laws, including but not limited to copyright, and that You will not use such proprietary content, information or materials in any way whatsoever except for permitted use of the SOFTWARE PRODUCT. This EULA grants You no intellectual property rights.
===============
To the extent not prohibited by law, Licensor expressly disclaims any warranty for the SOFTWARE PRODUCT. The SOFTWARE PRODUCT is provided 'As Is' without any express or implied warranty of any kind, including but not limited to any warranties of merchantability, non-infringement, or fitness of a particular purpose. Licensor does not warrant or assume responsibility for the accuracy or completeness of any information, text, graphics, links or other items contained within the SOFTWARE PRODUCT. Licensor makes no warranties respecting any harm that may be caused by the transmission of a computer virus, worm, time bomb, logic bomb, or other such computer program. Licensor further expressly disclaims any warranty or representation to Authorized Users or to any third party.
===================
In no event shall Licensor be liable for any damages (including, without limitation, lost profits, business interruption, or lost information) rising out of Your use of or inability to use the SOFTWARE PRODUCT, even if Licensor has been advised of the possibility of such damages. In no event will Licensor be liable for loss of data or for indirect, special, incidental, consequential (including lost profit), or other damages based in contract, tort or otherwise. Licensor shall have no liability with respect to the content of the SOFTWARE PRODUCT or any part thereof, including but not limited to errors or omissions contained therein, libel, infringements of rights of publicity, privacy, trademark rights, business interruption, personal injury, loss of privacy, moral rights or the disclosure of confidential information.
==============
If You acquired the software in the United States, New York state law governs the interpretation of this agreement and applies to claims for breach of it, regardless of conflict of laws principles.
If You acquired the software in any other country, the laws of that country apply.