This is cache of http://feeds.feedburner.com/~r/DanchoDanchevOnSecurityAndNewMedia/~3/415607441/commoditization-of-anti-debugging.html. Cache is the snapshot of article that we took when we index feed.
To see original page click here.
We are not affiliated with the authors of this article and not responsible for its content.
Commoditization of Anti Debugging Features in RATs - Part Two
2008-10-09 04:00:40 by Dancho Danchev in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge
 
Yet another piece of malware promoted as a RAT (remote access tool) includes what's turning into the defacto set of anti-debugging features within RATs.

As the authors point out, the Anti Virtual PC, VMware, Virtualbox, Sandboxie, ThreatExpert, Anubis, CWSandbox, Joebox, Norman Sandbox features inevitably increase the server size. Next to the product, there's always the managed service of ensuring a lower detection rate for binaries submitted to the authors.
 
Tags: remote access tool, anti virtual, authors, features, defacto set, lower detection, rats, piece, sandboxie
 
 
 
 
 
SecurityRatty FAQ
Sergey Zarubin, 31yo
CISSP, CCSP
Moscow, Russia