Reverse Honey Traps – Beating Online Anti-virus Engine in its Own Game
// June 7th, 2010 // No Comments » // White papers
Author: Rohit Bansal (RB1337) / Aditya K Sood (0kn0ck)
Web based online anti viruses are used heavily for scanning malware files and providing the resultant output. There are number of online service providers which perform inline scanning of uploaded malware executables by the normal user or the victims. This process is based on the hierarchical functions and different steps opted to analyze the viruses and other worm activities. The infections occur dynamically when the executable becomes active in the environment. Everything is automated in this process as servers residing at the backend scan the executable and sent the information to other third party servers for secondary analysis or updating their record directly. That’s how the normal functioning of free online malware scanner works.
