Malware is one of the most serious security threats on the Internet today, it has been seen that malware authors employ variety of techniques to evade security detection but most of their techniques are discovered and blocked by antivirus programs. Still there are some evasion techniques which are not exploited in wild and are effective against antivirus programs. This paper studies the working of Self-Extracting Archive (SFX) and how it can be used for malicious purposes with this we will also present the concept of Silent SFX which is a technique to silently deploy a malware into a target machine bypassing all runtime based antivirus scan's. In addition to this we analyze the antivirus reports produced before and after applying this technique and we will be providing suitable countermeasures to mitigate against this type of malware attack.
展开▼