Dive into the fascinating and terrifying world of evasive malware—malicious software designed to avoid detection. The first of its kind, this thorough introduction is full of practical information, real-world examples, and cutting-edge techniques for discovering, reverse-engineering, and analyzing state-of-the-art malware.
Beginning with foundational knowledge about malware analysis in the context of the Windows OS, you'll learn about the evasive maneuvers that malware programs use to determine whether they’re being analyzed and the tricks they employ to avoid detection. You'll explore the ways malware circumvents security controls, such as network or endpoint defense bypasses, anti-forensics techniques, and malware that deploys data and code obfuscation. At the end of the book, you'll build your very own anti-evasion analysis lab.
You’ll learn:
- Modern evasive malware threats
- Anti-analysis techniques used in malware
- How malware bypasses and circumvents security controls
- How malware uses victim targeting and profiling techniques
- How malware uses anti-forensics and file-less techniques
- How to perform malware analysis and reverse engineering on evasive programs