In 2011, virus writers have developed solutions for the 400 bypass sandbox

Posted: October 29, 2012 in IT Security News
Tags: , ,

Symantec CorpVirus writers have created a monthly basis for some 33 malware in 2011.

According to Symantec, in 2011, was found 400 examples of malware that can bypass the automated malware analysis.

“If malware can hide itself from the automated analysis of the threats, they can mingle with millions of other files, and anti-virus software will not calculate them” – said representatives of Symantec.

Malware authors supply their development mechanism to detect the sandbox. In particular, such mechanisms include “registry scan”, “check the video drivers”, “use of special programs in assembly language” as well as the mechanism of “check-defined process.”

When the program detects a sandbox, it stops working. Subsequently sandpit finds this site malicious.

Malware authors are trying to use new developments to bypass automated malware analysis. It should be noted that such systems are spending very little time to check files and may miss the malicious code. That is why the IT-specialists examined by analyzing the behavior of software programs and statistical.

Links:

http://www.symantec.com/…/malware-authors-using-new-techniques-evade-automated-threat-analysis-systems

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s