Malware: It’s all in the gift-wrapping

Malware and Spyware are on a huge rise this season, even when anti-virus software buying is rising. Simple re-hashing of old malware is more common now then new software.

A technical post from Avast is worth a read.

There is a market for gift-wrapping services in cyberspace – especially for malware.

There are thousands of malware variants out in cyberspace, including the well-known Alureon, Koobface, FakeAV, and Zeus. Behind this myriad assortment is a surprisingly small group of packers with the task of slipping malware past antivirus programs. These packers can generate an almost unlimited number of unique instances of a single underlying malware binary. And what is good news for the bad guys – and rather bad news for the rest of us – is that these software packages make malware more accessible to the more “average” cybercriminal.

You don’t have to be a geek to write malicious code, but advanced skills are certainly needed to effectively hide it from antivirus engines. The current solution to this dilemma is to get a custom malware packer which is constantly being fine-tuned to avoid emulation and detection by AV engines. In this way, you don’t need to recode anything once your binary is detected and you can easily distribute your old malware in new wrapper.

See more from Avast:
http://blog.avast.com/2010/12/20/malware-giftwrapping-services/



This entry was posted on Friday, December 24th, 2010 at 11:29 am and is filed under Security. You can follow any responses to this entry through the RSS 2.0 feed. Both comments and pings are currently closed.


Comments are closed.