[RP]: It Is All About Program Execution
Nice article about malware mechanisms and analysis:
It Is All About Program Execution: http://journeyintoir.blogspot.de/2014/01/it-is-all-about-program-execution.html
Nice article about malware mechanisms and analysis:
It Is All About Program Execution: http://journeyintoir.blogspot.de/2014/01/it-is-all-about-program-execution.html
Nice blog post amongst others describing some ways malware tries to hide on Windows systems (see “Context…no, WFP. Wait…what?”:
Nice post by Didier Stevens:
Nice post by ISC SANS:
http://isc.sans.edu/diary.html?storyid=10366
There is a whitepaper (PDF) by Kaspersky titled “Malicious Code Detection Technologies” which describes some basic concepts of AV technology.
Two components:
Technical component (listed in terms of increased levels of abstraction):