Jump to content

Exactly what are fingerprints?


Recommended Posts

Would someone mind point me to or explaining exactly what fingerprints are? I know from the searching I've done already, that they are file signatures for specific threats that are known... Is there anything more to this that? Thanks in advance!

swagger

Link to post
Share on other sites

I believe (but I don't know as I'm not a developer) that it also relates to "infection patterns" that the program looks for to identify threats. For example, Vundo/Virtumonde generally creates a locked (and often rootkit hidden) file with a random name consisting of 8 alphanumeric characters and has a registry entry with the same info as the name of the file in a specific place in the registry. I believe this would be an example of a "fingerprint" as well as a component of the heuristics engine of MBAM.

Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.