SEARCH RESULTS
 
Showing 1-10 of 291 records
 
Expand article

Anti-Debugging Series - Part I

2008-12-02 20:56:25 by Tyler Shields in Zero in a bit
 
For those that dont know, anti-debugging is the implementation of one or more techniques within computer code that hinders attempts at reverse engineering or debugging a target process. Typically this is achieved by detecting minute differences in memory, operating system, process information, latency, etc. that occur when a process is started...
 
Tags: process execution breaks, execution, process, methods query process, hardware breakpoint, hardware, process information, target process, methods
 
 
 
 
Expand article

The Commoditization of Anti Debugging Features in RATs

The Article has images
2008-09-03 07:46:00 by Dancho Danchev in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge
Is it a Remote Administration Tool (RAT) or is it malware ? That's the rhetorical question , since RATs are not supposed to have built-in Virustotal submission for the newly generated server, antivirus software "killing" and firewall bypassing capabilities Taking a peek into some of commodity features aiming to make it harder to analyze the...
 
Tags: anti, anti vmware, anti norman sandbox, common malware tools, malware, anti virtualpc, malware coders, anti anubis sandbox, malware modulators
 
 
 
 
Expand article

Beware of Rogue Anti-Malware

2008-08-18 10:16:04 by Editor in Cheap Hack
 
Rogue anti-virus and anti-spyware products are not a new story, but they are a relatively growing threat. One of these threats made some news this week and taught some lessons about just how suspicious you have to be of them. We had heard of XP Antivirus also known by a plethora of name variants, including Antivirus XP and year variants like...
 
Tags: anti-malware, rogue anti-malware vendors, legit software, software, sunbelt software, malware, rogue anti-malware software, fake malware scan, google ads
 
 
 
 
Expand article

Web Based Malware Emphasizes on Anti-Debugging Features

The Article has images
2008-10-07 02:42:00 by Dancho Danchev in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge
Following the ongoing development of a particular web based malware, always comes handy in terms of assessing the commoditization of anti-debugging features within modern malware. With plain simple, "managed binary crypting and firewall bypassing verification" on demand in February, to August's overall anti antivirus software mentality as a key...
 
Tags: malware, web based malware, binary file, binary, simple, plain simple, anti, simple junk data, firewall
 
 
 
 
Expand article

Anti-Missile Technology on Commercial Aircraft

2008-01-18 11:29:06 by schneier in Schneier on Security
 
There have been stories previously , but this time it looks like it will actually happen : Up to three American Airlines jets carrying passengers will be outfitted with anti-missile technology this spring in the latest phase of testing technology to protect commercial planes from attack The technology is intended to stop a missile attack by...
 
Tags: missile, anti-missile technology, technology, missile attack, laser anti-missile system, attack, american airlines jets, protect commercial planes, laser beam
 
 
 
 
Expand article

Anti-Malware Vendor's Site Serving Malware

The Article has images
2008-02-12 20:31:18 by HASH0x8b333c4 in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge
Even though AvSoft Technologies isn't really enjoying a large market share, making the impact of this malware coming out of their site even bigger, the irony is perhaps what truly matters in the situation. Some press coverage - Hackers Turn Antivirus Site Into Virus Spreader ; Antivirus company's Web site downloads ... a virus ; Hackers seed...
 
Tags: site, virut virus, virus, indian anti-virus site, malware, web site downloads, antivirus site, hackers, hackers seed malware
 
 
 
 
Expand article

Anti-Virus Company Says PeerGuardian is Malware

2008-02-24 23:20:05 by Editor in Digg / Security
 
Over the past week, some servers used for updating the anti-virus software NOD32 were labeled as anti-p2p by a popular list maker for PeerGuardian. In response, NOD32s company, ESET, has categorised PG2 as malware in some of its latest updates
 
Tags: popular list maker, anti-virus software nod32, malware, peerguardian, past week, nod32s company, response, eset, pg2
 
 
 
 
Expand article

Redefining Anti-Virus Software

2008-06-12 10:53:42 by Editor in Digg / Security
 
Anti-virus firms continue to struggle to stand their ground amid a flood of new malicious programs being unleashed each day, a complementary approach to fighting malware is beginning to take root"Interesting white list approach - albeit it's still based on anti-virus (black list approach at the back) it shows a new direction is needed
 
Tags: anti-virus, anti-virus firms continue, white list approach, black list approach, malicious programs, complementary approach, ground amid, stand, albeit
 
 
 
 
Expand article

The Commercialization of Anti Debugging Tactics in Malware

The Article has images
2008-09-29 16:55:54 by Dancho Danchev in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge
Commoditization or commercialization, Themida or Code Virtualizer, individually crypting or outsourcing to an experienced malware crypting service offering discounts on a volume basis next to detection rates of the crypted binary offered by a trusted online scanner that is NOT distributing the samples to the vendors? These are just some of the...
 
Tags: machine, specific virtual machine, internal virtual machine, code, sensitive code, malware, unique virtual machine, original code, code virtualizer