How malware authors evade antivirus detection?

Discussion in 'malware problems & news' started by Dermot7, Jan 19, 2012.

Thread Status:
Not open for further replies.
  1. Dermot7

    Dermot7 Registered Member

    Joined:
    Dec 20, 2009
    Posts:
    3,196
    Location:
    Surrey, England.
  2. Cudni

    Cudni Global Moderator

    Joined:
    May 24, 2009
    Posts:
    6,956
    Location:
    Somethingshire
    employing business practices, as if it was not bad already.
     
  3. Hungry Man

    Hungry Man Registered Member

    Joined:
    May 11, 2011
    Posts:
    9,148
    Very cool, thanks.
     
  4. m00nbl00d

    m00nbl00d Registered Member

    Joined:
    Jan 4, 2009
    Posts:
    6,623
    Is Dancho Danchev now working for Webroot? Or, was it a guest article?
     
  5. Dermot7

    Dermot7 Registered Member

    Joined:
    Dec 20, 2009
    Posts:
    3,196
    Location:
    Surrey, England.
    I've recently got impression that he's "guest blogging", rather than employed, but could be wrong.
     
  6. Brandonn2010

    Brandonn2010 Registered Member

    Joined:
    Jan 10, 2011
    Posts:
    1,849
    Any way that program could be modified to function as a multi-engine scanner?
     
  7. Hungry Man

    Hungry Man Registered Member

    Joined:
    May 11, 2011
    Posts:
    9,148
    That's how it works but it's illegal.
     
  8. Atul88

    Atul88 Registered Member

    Joined:
    Dec 8, 2011
    Posts:
    259
    Location:
    India
  9. TonyW

    TonyW Registered Member

    Joined:
    Oct 12, 2005
    Posts:
    2,634
    Location:
    UK
    Dancho announced on Twitter at the beginning of January he was joining Webroot as a security blogger.
     
  10. littlebits

    littlebits Registered Member

    Joined:
    Jul 7, 2006
    Posts:
    262
    I have never heard of "Kim’s Multiple Antivirus Scanner" and there is no search results about it except for this Webroot blog.

    Does it really exists? Is it a legal software and if so where can you download it from?

    Thanks.:D
     
  11. Spooony

    Spooony Registered Member

    Joined:
    Apr 30, 2011
    Posts:
    514
    How do some of the vendors get signatures and rules for their products?
    They buy them off those same people that create the malware
     
  12. Dark Shadow

    Dark Shadow Registered Member

    Joined:
    Oct 11, 2007
    Posts:
    4,553
    Location:
    USA
    There probably working with each other.:D $$ Cha Ching Cha Ching.
     
  13. Spooony

    Spooony Registered Member

    Joined:
    Apr 30, 2011
    Posts:
    514
    Exactly. Without the one the other will falter
     
  14. CloneRanger

    CloneRanger Registered Member

    Joined:
    Jan 4, 2006
    Posts:
    4,833
    Me niether !

    Actually there are ;)

    Yes.

    See your PM for a Lot more info & links etc ;)
     
  15. Hungry Man

    Hungry Man Registered Member

    Joined:
    May 11, 2011
    Posts:
    9,148
    It's illegal - it packages paid antiviruses into a scanner in ways that probably violate their TOS.


    No.
     
  16. Spooony

    Spooony Registered Member

    Joined:
    Apr 30, 2011
    Posts:
    514
    I said some and I have proof of such a company doing it. They bought 0 day exploits and it was used in their HIPS engine. Some others do it as well. Malware source codes get sell online and security companies scan those same forums. Some will make it public some will use it and put it quietly into their engine.
     
Loading...
Thread Status:
Not open for further replies.