Reverse Honey Trap – Striking Deep inside Online Web Antivirus Engines and Analyzers

Web based online anti viruses are used heavily for scanning malware files and providing the resultant output. There are number of online service providers which perform inline scanning of uploaded malware executables by the normal user or the victims. This process is based on the hierarchical functions and different steps opted to analyze the viruses and other worm activities. The infections occur dynamically when the executable becomes active in the environment. Everything is automated in this process as servers residing at the backend scan the executable and sent the information to other third party servers for secondary analysis or updating their record directly. That’s how the normal functioning of free online malware scanner works.

By Rohit Bansal
http://www.schap.org

Paper can be found at: rev_honeytrap_av_v1

wordpress com stats plugin