Evading behavior analysis

		Exetools > General > General Discussion
Evading behavior analysis

03-26-2018, 06:16

tecnmarl

Friend

Join Date: Mar 2018

Location: Italy

Posts: 9

Rept. Given: 0

Rept. Rcvd 0 Times in 0 Posts

Thanks Given: 1

Thanks Rcvd at 6 Times in 4 Posts

The key is not the timing. Usually, the timing doesn't play a major role in the following analyses. A good hint might be understanding when the payload gets detected.
Try to make some borderline programs: some that you think will trigger the red flag and some, doing similar things, that won't trigger it. After this, you should start to see a pattern.

If you were an antivirus programmer, what would you check for?

The Following 2 Users Say Thank You to tecnmarl For This Useful Post:
0xall0c (03-27-2018), niculaita (03-27-2018)

« Previous Thread | Next Thread »

Posting Rules
You may not post new threads You may not post replies You may not post attachments You may not edit your posts BB code is On Smilies are On [IMG] code is Off HTML code is Off Forum Rules

Similar Threads
Thread	Thread Starter	Forum	Replies	Last Post
Malware Analysis	ldmd	General Discussion	7	03-09-2025 18:42
Weird behavior in a patched program	Doit	General Discussion	4	02-23-2022 01:48
armadillo strange behavior	drequinox	General Discussion	0	02-11-2006 08:52
weird search behavior	abitofboth	General Discussion	0	01-30-2005 20:48

All times are GMT +8. The time now is 21:51.