Malware Can Be Hidden In Drive-By Download Exploits Using HTML5.

1:36:00 AM Amad Ahmad 0 Comments



According to two researchers from Italian universities in Rome and Salerno, have identified methods through which malware can be hidden in drive-by download exploits using modern HTML5 APIs.
Hackers can use drive-by download method to install-malware, spyware or computer viruses on victims computer. Most of these type of exploits are spotted byantivirus software's, which made the attackers to think different techniques to hide their actions.
On 2013 a research was done and redone in July 2015. Researchers tested out their HTML5-based using Virus-Total antivirus engines and used security bugs in Internet Explorer and Firefox
Developers use three different ways for confusing and clearing malicious code. These methods were successful  against static and dynamic analysis detection engines
- Advertisement -
  • Delegated Preparation –  Delegates the preparation of malware to the system APIs.
  • Distributed Preparation – Distributes the preparation code over several concurrent and independent processes running within the browser.
  • User-driven Preparation – Lets the user trigger the execution of the preparation code during the time he spends interacting with the page.
RESEARCHERS SAYS THAT,”A FURTHER INVESTIGATION REVEALED THAT THIS FAILURE [TO DETECT THE OBFUSCATED MALWARE] WAS DUE TO THE INABILITY OF THESE [DETECTION] SYSTEMS  TO  RECOGNIZE  AND  DEAL  WITH  HTML5  RELATED  PRIMITIVES.”
Thank You For Reading
For More

Stay With UsAmad Ahmad 

0 comments :