Lastline Labs

Evasive JScript

Posted by Marco Cova on 11/3/16 12:44 PM

One of the characteristics of malware that we follow closely is its use of evasion techniques; that is, techniques that the malware uses to hide its true malicious nature from traditional sandboxes, until it reaches a specific target machine. In other posts, we have discussed the adoption of different evasive techniques in binary programs, and, more recently, we have looked at the use of evasion in malicious Office documents through VBA macros. Here we examine the use of evasion in JScript scripts.

Read More

Topics: evasive jscript, VBA Macros, ECMAScript, COM Object Emulation Detection, Timebombs, stalling code, Execution Environment

Subscribe to Email Updates