The latest concept in malware

Discussion:

(too old to reply)

soja_a

2012-08-30 05:45:37 UTC

From a recent Usenix paper, the latest in malware concepts: stitching malware

together from benign binaries, thereby evading current generation malware detection
software. Cutely, they've named their approach Frankenstein:
<https://www.usenix.org/conference/woot12/frankenstein-stitching-malware-benign-binaries>

soja_a

Big Bad Bob

2012-09-01 22:01:01 UTC

Permalink

Post by soja_a

From a recent Usenix paper, the latest in malware concepts: stitching malware

together from benign binaries, thereby evading current generation malware detection
<https://www.usenix.org/conference/woot12/frankenstein-stitching-malware-benign-binaries>
soja_a

to detect things like this, you'd need to have a virus 'signature'
that's based on the 'glue' that holds the parts together. but yeah.

Bodo Eggert

2012-09-12 10:39:39 UTC

Permalink

Post by soja_a

From a recent Usenix paper, the latest in malware concepts: stitching malware

together from benign binaries, thereby evading current generation malware
<https://www.usenix.org/conference/woot12/frankenstein-stitching-malware-

benign-binaries>

Sounds much like using system libraries, just with non-library binaries.

2 Replies
11 Views
Permalink to this page
Disable enhanced parsing

Thread Navigation

soja_a 2012-08-30 05:45:37 UTC

Big Bad Bob 2012-09-01 22:01:01 UTC

Bodo Eggert 2012-09-12 10:39:39 UTC

about - legalese