Prevalent Characteristics in Modern Malware (slides)

Discussion in 'malware problems & news' started by MrBrian, Aug 9, 2014.

Thread Status:
Not open for further replies.
  1. MrBrian

    MrBrian Registered Member

    Joined:
    Feb 24, 2008
    Posts:
    6,032
    Location:
    USA
    From https://www.blackhat.com/us-14/archives.html#prevalent-characteristics-in-modern-malware:
    The presentation references paper "Scientific but Not Academical Overview of Malware Anti-Debugging, Anti-Disassembly and Anti-VM Technologies" from http://research.dissect.pe/.

    "Anti-VM" was found in 81.4% of samples (page 19)!!?
     
  2. deBoetie

    deBoetie Registered Member

    Joined:
    Aug 7, 2013
    Posts:
    1,150
    Location:
    UK
    The 81.4% with Anti-VM does sound implausibly high, although that would be the standard analysis condition.

    The higher the better as far as I'm concerned, provided the malware exits as a result! I do most of my internet facing stuff from a VM.... In any case, revert-to-snapshot hopefully completes the treatment.
     
Loading...
Thread Status:
Not open for further replies.