tag:blogger.com,1999:blog-143925273655347334.post3806741247516931876..comments2024-03-27T07:30:02.390+00:00Comments on drsolly: The downside of malwaredrsollyhttp://www.blogger.com/profile/15954188290191548178noreply@blogger.comBlogger2125tag:blogger.com,1999:blog-143925273655347334.post-21171881320123665452016-03-08T22:03:09.462+00:002016-03-08T22:03:09.462+00:00I can't test that, though.I can't test that, though.drsollyhttps://www.blogger.com/profile/15954188290191548178noreply@blogger.comtag:blogger.com,1999:blog-143925273655347334.post-83115189082624120692016-03-07T20:51:24.189+00:002016-03-07T20:51:24.189+00:00Most - if not all - your Virustotal test scans are...Most - if not all - your Virustotal test scans are on the downloaders, not the payload. You might get better results on the payload. Moreover, most A/V products come with some kind of heuristic process monitor, which doesn't rely on the outdated idea of file signatures. The process monitor should be able to warn against a payload's behaviour, if it is about to do something bad, regardless of whether the payload is in a product's detection database or not.Anonymoushttps://www.blogger.com/profile/10874986622698827580noreply@blogger.com