Generating Antivirus Evasive Executables Using Code Mutation

Stefan Sabin NICULA

doi:10.12948/issn14531305/22.2.2018.08

Informatică economică (Jan 2018)

Generating Antivirus Evasive Executables Using Code Mutation

Stefan Sabin NICULA

Affiliations

Stefan Sabin NICULA

DOI: https://doi.org/10.12948/issn14531305/22.2.2018.08
Journal volume & issue: Vol. 22, no. 2
pp. 81 – 86

Abstract

Read online

The paper is focus around developing a utility tool based on a python component and a C++ stub in order to compile executable Windows files that are capable of staying undetected to Antivirus solutions. The research process was focused around Antivirus software's ability to detect a malicious file and methods of bypassing the identified techniques. Dependencies and auxiliary links of the project are defined as inputs from the user as well as support software and frameworks designed to provide malicious payload with listeners and handlers for the generated shellcode. Overall, the utility tool is able to receive shellcode and one encryption key as input and generate malware in the shape of a Windows executable file that is able to successfully run and bypass Antivirus detection.

Published in Informatică economică

ISSN: 1453-1305 (Print); 1842-8088 (Online)
Publisher: Inforec Association
Country of publisher: Romania
LCC subjects: Technology: Electrical engineering. Electronics. Nuclear engineering: Electronics: Computer engineering. Computer hardware; Bibliography. Library science. Information resources
Website: http://revistaie.ase.ro

About the journal

Abstract

Keywords