Entries filed under 'Muhammad Hasib Latif'
Increased Use of WMI for Environment Detection and Evasion
Malware writers are always looking for new ways to evade analysis frameworks and sandboxes to successfully breach targeted environments and platforms. WMI provides a simple way of environment detection to evade sandboxes and dynamic analysis tools, which seem to be underestimated by the security community. This blog looks at evasion samples.