Knowledge ID: K0189

Knowledge Description: Knowledge of malware with virtual machine detection (e.g. virtual aware malware, debugger aware malware, and unpacked malware that looks for VM-related strings in your computer’s display device).

Work Roles with this Knowledge:

Work Role ID: IN-FOR-001
Work Roles: Law Enforcement/Counterintelligence Forensics Analyst
Work Role Description: Conducts detailed investigations on computer-based crimes establishing documentary or physical evidence, to include digital media and logs associated with cyber intrusion incidents.
Category: Investigate
Specialty Area(s): Digital Forensics
Work Role ID: IN-FOR-002
Work Roles: Cyber Defense Forensics Analyst
Work Role Description: Analyzes digital evidence and investigates computer security incidents to derive useful information in support of system/network vulnerability mitigation.
Category: Investigate
Specialty Area(s): Digital Forensics

The NICE Framework data presented on these pages was last updated by NIST on July 7, 2020 and will be updated when the official Revision 1 data is released.