Brandon Resheske
What is Malware? Code designed to interfere with normal computer operation The correct general term, instead of ‘virus.’ Basically, executable code that a user would prefer to not have executed
Common Malicious Behavior Major Annoyance (General Malware, AKA Ankle Biter) Disguises (Trojan) Stealth Network Security Holes (Worm) Injection Corruption Self-Replication (Virus, Worm) Payload Delivery Efficiency Reverse-Server Concept (Trojan)
Demo Show first program
Common Disguises/Stealth Windows API Inaccurate Assembly Information Executable Injection Boot-Sector Injection Rootkit
Security Holes Found via hacking Exploited by worms
Common Injection Methods Executable Cavity Injection Executable Injection System File Injection Boot-Sector Injection File-System Injection Memory Injection
Common Self-Replication Methods Windows API Shared Network Spamming IM Spamming
Demos Cavity Injection Trojan