Join Thomas Pantels for an in-depth discussion in this video What you should know, part of Windows Performance Toolkit: Worm Analysis.
- [Instructor] This worm is written in Visual Basic Script, so knowing how to code will help with the learning curve on this one. To brush up on some coding, check out the Visual Basic Essential Training course. We inspect the worm source code in Visual Studio since it has syntax coloring to help with readability. Lastly, when we inspect the worm inside the Windows Performance Analyzer, we will see Windows APIs being called. Previous experience with Windows APIs will help out when we are diving into the call stack. And the worm takes advantage of the currently installed Microsoft Outlook program that comes with Microsoft Office, so being familiar with Outlook will also help.