Before you start, please revert your VM to a clean snapshot.

For this section we use the following tools:

• API Monitor

• 7zip 15.05

• Renamer

Download them onto your malware analysis lab and create a snapshot.