Security News > 2023 > February > New stealthy 'Beep' malware focuses heavily on evading detection
A new stealthy malware named 'Beep' was discovered last week, featuring many features to evade analysis and detection by security software.
Beep is an information stealer malware that uses three separate components: a dropper, an injector, and the payload. The dropper creates a new registry key with an 'AphroniaHaimavati' value that contains a base64 encoded PowerShell script.
What makes the Beep malware stand out is its use of multiple techniques throughout its execution flow to evade detection and analysis by security software and researchers.
Beep API function anti-sandbox - Alternate to 'Sleep API function,' it generates a beep tone on the speaker while delaying the malware execution to evade sandbox detection.
OutputDebugString() anti-debugging - Debugger detection technique relying on a call return result.
Beep is an example of malware that heavily focuses on evasion, having implemented multiple anti-analysis mechanisms before finalizing the full feature set for data theft and the execution of commands.