Jump to content

Recommended Posts

Can anyone confirm that MWB premium protects from the infection methods mentioned in the articles quoted here. I am most concerned about the "file-less malware" that can hide in the Windows event logs, and gets executed and is then obfuscated. I understand from the Kaspersky article that it often starts with the download of an infected RAR file, so hopefully the first stage can be easily covered?

Here is the initial article:

 

https://www.techrepublic.com/article/kaspersky-fileless-malware-windows-event-logs/

 

This one is the in-depth initial report from SecureList that it references:

 

https://securelist.com/a-new-secret-stash-for-fileless-malware/106393/

 

 

Edited by AdvancedSetup
Disabled live hyperlink
Link to post
Share on other sites

  • td47 changed the title to Checking if MWB premium stops shellcode insertion

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.