The process of analyzing and dissecting malicious software in order to identify its source, purpose, and potential harm.