Projects

I evaluated the effectiveness of antivirus (AV) defenses against various malware evasion techniques. I implemented these techniques on real-world malware files and tested them on 13 AVs for Windows 10. The techniques included signature-based evasion, code stalling, and evasion with fingerprints. I also provided possible mitigations against each technique. I aimed to determine what caused detection and what defense strategies AV systems implemented. I concluded by presenting two evasion methods against dynamic detection and evaluated them while suggesting possible mitigations.