Sunday, March 18, 2018
Tuesday, June 20, 2017
“We can classify evasion techniques into three broad categories:
Anti-security techniques: Used to avoid detection by antimalware
engines, firewalls, application containment, or other tools that
protect the environment.
Anti-sandbox techniques: Used to detect automatic analysis and
avoid engines that report on the behavior of malware. Detecting
registry keys, files, or processes related to virtual environments lets
malware know if it is running in a sandbox.
Anti-analyst techniques: Used to detect and fool malware
analysts, for example, by spotting monitoring tools such as Process
Explorer or Wireshark, as well as some process-monitoring tricks,
packers, or obfuscation to avoid reverse engineering.In the world of cybersecurity evasion, certain terms are popular. Here are