How to protect yourself from the hidden threat of evasive scripts

2020-09-07 04:00

Scripts can also be used for malicious purposes, and malicious scripts are unlikely to be detected or blocked by the average antimalware solution.

While Emotet is one example of threat that uses scripts as part of its evasive strategy, there are many other types of script-based evasion techniques organizations need to be aware of to keep their systems secure.

While obfuscation also has legitimate purposes, in the context of an evasive attack obfuscation makes it difficult to analyze the true nature of a script.

Some examples include storing scripts in Scheduled Tasks, LNK files and the Windows Registry.

The good news is that the Windows 10 operating system now includes Microsoft's Anti-Malware Scan Interface to help combat the growing use of malicious and obfuscated scripts.

News URL

http://feedproxy.google.com/~r/HelpNetSecurity/~3/8bXCUt79cZY/

#evasive #threat