Advertisement
If you have a new account but are having problems posting or verifying your account, please email us on hello@boards.ie for help. Thanks :)
Hello all! Please ensure that you are posting a new thread or question in the appropriate forum. The Feedback forum is overwhelmed with questions that are having to be moved elsewhere. If you need help to verify your account contact hello@boards.ie
Hi there,
There is an issue with role permissions that is being worked on at the moment.
If you are having trouble with access or permissions on regional forums please post here to get access: https://www.boards.ie/discussion/2058365403/you-do-not-have-permission-for-that#latest

This little ditty can avoid sandboxing on commercial and open stack !

Comments

  • #2
    Khannie
    Registered Users, Registered Users 2 Posts: 37,485 ✭✭✭✭Khannie


    Malware's been doing that for a while (though this one does seem quite advanced). It's a real arms race. Interesting times.


  • #3
    dbit
    Closed Accounts Posts: 1,322 ✭✭✭dbit


    Simple programmatic time waits , now where has this technique been used before , ADT alarms ? Xbox 360 quartz time attack ?? pretty much every thing is open to timing attacks , its just interesting to see how they learned its behavior, in that the sandbox ignored it due to said staggering of time frame on activities . Yes I'm also aware the onion is used quite often to push or hide chatter from cnc or attackers on a plethora of malwares/trojans/ransomwares/pups


  • #4
    Blowfish
    Registered Users, Registered Users 2 Posts: 5,112 ✭✭✭Blowfish


    It's been a couple of years since malware has been attempting to evade sandboxes through various means. UpClicker was the first I remember which waited for mouse clicks. Other malware does stuff like popping dialogue boxes, multi stage payloads, doing nothing until reboot, checking volume info on the HDD etc..


Advertisement