Well malware analysis is quickly becoming a skill that security professionals must have. You need not be a Havlar Flake to make use of malware sample. What you need is a moderate skill level and preferably a methodology. That would typically break down into both static and dynamic analysis. Do any of you have any set methodologies you would like to share?