KAV 7 - polymorphic or repacked trojans

Discussion in 'other anti-virus software' started by ChrisP, Jan 31, 2008.

Thread Status:
Not open for further replies.
  1. ChrisP

    ChrisP Suspended Member

    Joined:
    Jun 6, 2003
    Posts:
    447
    Location:
    UK
    Will KAV 7 detect polymorphic trojans or trojans which have been repacked?
     
  2. kjempen

    kjempen Registered Member

    Joined:
    May 6, 2004
    Posts:
    379
    I don't think KAV would have much problem with repacked trojans as they are one of the best antiviruses (if not the best) when it comes to unpacking.
     
  3. Sjoeii

    Sjoeii Registered Member

    Joined:
    Aug 26, 2006
    Posts:
    1,240
    Location:
    52?18'51.59"N + 4?56'32.13"O
    yes they will no problem
     
  4. solcroft

    solcroft Registered Member

    Joined:
    Jun 1, 2006
    Posts:
    1,639
    That's kind of a bold statement.

    Every AV staggers against packers. KAV is no exception.
     
  5. Sjoeii

    Sjoeii Registered Member

    Joined:
    Aug 26, 2006
    Posts:
    1,240
    Location:
    52?18'51.59"N + 4?56'32.13"O
    offcourse. They all are in war with viruses as well. But bottom line it will protect you. V8 will even have better protection against the packers
     
  6. jrmhng

    jrmhng Registered Member

    Joined:
    Nov 4, 2007
    Posts:
    1,268
    Location:
    Australia
    I remember back when trojans and anti-trojans were all the rage, I tried packing trojans a few different packers and scanning them with KAV Norton Mcafee and Panda.

    Norton didn't pick up any of them. I remember Panda and Mcafee wasn't that good. KAV unpacked them all though.

    Obviously they were just amateurish musings but my point is that KAV was always strong with packers.
     
  7. ChrisP

    ChrisP Suspended Member

    Joined:
    Jun 6, 2003
    Posts:
    447
    Location:
    UK
    I have now removed KAV from my PC as it made it run so slow / not at all. I now have F-Secure 5.4 for Workstations with Superantispyware, AVG Anti-Spyware and Unhackme. Even with all these running, its faster than with Kaspersky!
     
  8. solcroft

    solcroft Registered Member

    Joined:
    Jun 1, 2006
    Posts:
    1,639
    Using already-available packers to modify trojans are the most amateurish way to do so. Real malware use custom-created or hand-modified packers created in-house specifically for this purpose that antivirus vendors have never seen before, and some packers are even polymorphic. That's where the real test is.
     
  9. RejZoR

    RejZoR Registered Member

    Joined:
    May 31, 2004
    Posts:
    6,426
    The truth is however different. There are only few packers that are actually made from scratch (those custom made, in-house and stuff), other 99% of them are just modifications of existing ones.
     
  10. solcroft

    solcroft Registered Member

    Joined:
    Jun 1, 2006
    Posts:
    1,639
    That was actually what I said.

    And modification by hand is often enough to do the trick anyway. I wouldn't rate Kaspersky as excellent in this area, but it has to be admitted that it's better than many others.
     
Loading...
Thread Status:
Not open for further replies.