This can include the discovery of passwords or other authentication
mechanisms in use by the malware.
??? Capabilities of the malware to understand the current state of the art or to
compare with existing malware families.
??? How to communicate with the malware as a means of understanding what
information the malware has collected or as a means of detecting additional
infections.
??? Vulnerabilities in the malware that may allow for remote termination of the
malware on infected machines.
Trends in Malware
Like any other technology, malware is growing increasingly sophisticated. Malware
authors seek to make their tools undetectable. Virtually every known offensive technique
has been incorporated into malware to make it more difficult to defend against.
While it is rare to see completely new techniques appear first in malware, malware
authors are quick to adopt new techniques once they are made public, and quick to
adapt in the face of new defensive techniques.
521
Gray Hat Hacking: The Ethical Hacker??™s Handbook
522
Embedded Components
Malware authors often seek to deliver several components in a single malware payload.
Such additional components can include kernel level drivers designed to hide the presence
of the malware, and malware client and server components to handle data
exfiltration or to provide proxy services through an infected computer.
Pages:
878
879
880
881
882
883
884
885
886
887
888
889
890
891
892
893
894
895
896
897
898
899
900
901
902