Hands-on PE format internals lab — headers, sections, data directories, TLS, AoEP, packer detection & UPX unpacking, payload injection (.text/.rsrc/.data/XOR/Base64), and packed malware analysis using pestudio, pe-bear, malcat, x64dbg & more.