cis 442: chapter 2 viruses. malewares maleware classifications and types viruses logical and time...

CIS 442: Chapter 2 Viruses

Upload: douglas-norman

Post on 02-Jan-2016

216 views

Category:

Documents

0 download

Report

Download

Tags:

Embed Size (px):

TRANSCRIPT

CIS 442: Chapter 2

Viruses

Malewares

• Maleware classifications and types• Viruses• Logical and time bombs• Trojan horses and backdoors• Worms• Spam• Spyware

Operating systems tasks

• Booting and resetting• Managing volumes and files• Managing executable programs and processes• Managing memory• Handling interrupts

Viruses

• Definition and history• Viruses for mainframe and PCs• Propagation or infection• Payload or damage• Trigger• Replication• Virus polymorphism

Virus writers

• Reasons for writing, using or distributing viruses

• General profile

Page 6: CIS 442: Chapter 2 Viruses. Malewares Maleware classifications and types Viruses Logical and time bombs Trojan horses and backdoors Worms Spam Spyware

Virus propagation

• From file to file and from computer to another.

• Looking for executable, and similar files• Memory resident viruses• Infected software, email attachement

Page 7: CIS 442: Chapter 2 Viruses. Malewares Maleware classifications and types Viruses Logical and time bombs Trojan horses and backdoors Worms Spam Spyware

Macro viruses

• Differences from typical viruses• Document files

Page 8: CIS 442: Chapter 2 Viruses. Malewares Maleware classifications and types Viruses Logical and time bombs Trojan horses and backdoors Worms Spam Spyware

Virus classification methods

• By Infection• By Damage• By trigger• By Platform

Classification

• File infector viruses• Shell viruses• Non-overwriting viruses• Overwriting viruses• Intrusive viruses• Boot sector viruses• Multipartitie viruses

• Memory resident viruses• BSI Boot sector viruses• Differences between BSI and file infectors• Bootstrap loader and virus hiding methods

Page 11: CIS 442: Chapter 2 Viruses. Malewares Maleware classifications and types Viruses Logical and time bombs Trojan horses and backdoors Worms Spam Spyware

File infector viruses infection methods

• Shell viruses• Overwriting• Non-overwriting• Intrusive• File attributes: Size, CRC(hash), MAC, code

inside, access permissions

Page 12: CIS 442: Chapter 2 Viruses. Malewares Maleware classifications and types Viruses Logical and time bombs Trojan horses and backdoors Worms Spam Spyware

Companion-multipartitie Viruses

• File association• DOS execution sequence (com, bat, exe).• Multi-File infector and BSI viruses: advantages

and challenges

Page 13: CIS 442: Chapter 2 Viruses. Malewares Maleware classifications and types Viruses Logical and time bombs Trojan horses and backdoors Worms Spam Spyware

Page 14: CIS 442: Chapter 2 Viruses. Malewares Maleware classifications and types Viruses Logical and time bombs Trojan horses and backdoors Worms Spam Spyware

Macro and Script Viruses• Macros programs, examples• Examples and characteristics of Macro Viruses• Protection against Macro viruses.

Page 15: CIS 442: Chapter 2 Viruses. Malewares Maleware classifications and types Viruses Logical and time bombs Trojan horses and backdoors Worms Spam Spyware

Infected images and acrobat

• Buffer overflow problems

Page 16: CIS 442: Chapter 2 Viruses. Malewares Maleware classifications and types Viruses Logical and time bombs Trojan horses and backdoors Worms Spam Spyware

Virus life cycle

• Signature• Infection• Damage• Trigger or Activation: Bombs

Page 17: CIS 442: Chapter 2 Viruses. Malewares Maleware classifications and types Viruses Logical and time bombs Trojan horses and backdoors Worms Spam Spyware

Virus Payloads

• Types and levels of payloads

Page 18: CIS 442: Chapter 2 Viruses. Malewares Maleware classifications and types Viruses Logical and time bombs Trojan horses and backdoors Worms Spam Spyware

Virus organization

• Infection marker• Infector• Trigger check• Manipulation

Page 19: CIS 442: Chapter 2 Viruses. Malewares Maleware classifications and types Viruses Logical and time bombs Trojan horses and backdoors Worms Spam Spyware

Virus naming

• Based on type• Based on creator• Macro viruses• Based on environment

Page 20: CIS 442: Chapter 2 Viruses. Malewares Maleware classifications and types Viruses Logical and time bombs Trojan horses and backdoors Worms Spam Spyware

Virus hiding methods

• Hiding methods• Stealth techniques

Page 21: CIS 442: Chapter 2 Viruses. Malewares Maleware classifications and types Viruses Logical and time bombs Trojan horses and backdoors Worms Spam Spyware

Interrupts and viruses

• Relation between interrupts and viruses – trigger and activation

• Trapdoors

Overview · • Advanced Threat Detection – Identiﬁes & blocks viruses, spyware, ransomware, malicious links, and more, on your laptops, tablets & smartphones. • Smart Home

Malware: Viruses, Worms, Trojan Horses, & Spyware What They Are & How to Deal with Them Jay Stamps, [email protected], [email protected]

ro10.doh.gov.phro10.doh.gov.ph/files/Bid_Opportunities/ITB_for... · >Protects against viruses, spyware, Internet threats and more >Safeguards your privacy and defends against identity

Computer Security Seminar — Lecture 3orrd/CompSecSeminar/2016/... · Malware Backdoors Defense Viruses Worms Trojan Rootkits Botnets Computer Viruses (cont.) As computer viruses

Defending Against Spywaredynamic.ziftsolutions.com/clients/trendmicro/pdfs/...HOW DOES SPYWARE DIFFER FROM VIRUSES ... Spyware at Work GENERATION OF REVENUE USER IMPACT SYMPTOMS Degradation

The Definitive Guide to Controlling Malware, Spyware ... · Macro viruses can infect any desktop application that supports macros, not just Microsoft Word. Several macro viruses infect

Contents Viruses Viruses Computer Worms Computer Worms Trojans Trojans Spyware Spyware Adware Adware Spam Spam Hoaxes and Scams Hoaxes and

And how you can handle it. Trojan horses Spyware Adware Rootkits Viruses Worms Software that works without the victim’s permission

Intense Use of Computer WHAT TO DO WHEN…. Infected by Viruses?Infected by Viruses? Infected by Spyware?Infected by Spyware? Windows Crashed?Windows

Spyware and Viruses and Theft, Oh My… · Computer Security Spyware and Viruses and Theft, Oh My… Chapter 11 – Discovering Computers 2009

The best of anti-virus technologies to protect your PCs€¦ · Password stealers Spyware Rootkits Riskware (riskware) Polymorphic viruses Worms Backdoors Jokers Paid dialers Hack

Computer Security Seminar Lecture 2orrd/CompSecSeminar/2013/... · Malware Backdoors Defense Viruses Worms Trojan Rootkits Botnets Computer Viruses One of the eldest malicious threats

Viruses, Scams and Spyware · delete the obvious viruses before they even make it to your inbox. They do this in two ways: 1. Pre-scanning the attachments for known viruses, and deleting

x90re’s Backdoors

Spyware, Videogame Addiction, Binary numbers, and Viruses

FUNCTIONALITY AND FEATURES. Page 2 Agenda Main topics System requirements Scanning Viruses Spyware Updating virus signature updates Other features

1NC Backdoors

Running head: THE DANGERS OF MOBILE COMPUTING › 9db4 › c31ad912146b... · high-speed connections, unpatched operating systems, devices infected with spyware, malware, viruses,

Malware, Spyware, and Viruses

Computer Crime, Cybercrime, Hacking Tactics, Cyber Theft, Viruses, Worms, Adware, Spyware

march 2010 Cybersecurity - Mediaplanetdoc.mediaplanet.com/all_projects/4848.pdf · called worms and viruses conceived principally to vandalize, to sophisti - cated spyware and crimeware

IBM Proventia Network Intrusion Prevention System GX6116 ... · network to block intrusion attempts, denial of service (DoS) attacks, malicious code, backdoors, spyware, peer-to-peer

Viruses, Input/Output Devices, and Spyware

Trojan backdoors

Command Line Interface Reference - WikiLeaks · Blue Coat ProxySG Command Line Interface Reference 12 spyware,spy ware,spyware blocker,spyware detection,spyware detector,spyware eliminator,spyware

Internet Safety CSA 105 1.0 September 21, 2010. Internet Threats Malware (viruses) Spyware Spam Hackers Cyber-criminals

Viruses, Spyware , Malware and Phishing

EndpointProtection - Panda Securitypartnernews.pandasecurity.com/hungary/src/uploads/2018/05/ENDP… · The protection it provides neutralizes spyware, Trojans, viruses and any other

Presentación de PowerPointpartnernews.pandasecurity.com/za/src/uploads/2015/... · Comparing Adaptive Defense vs. Top 25 Traditional Antivirus Solutions * Viruses, Trojans, spyware

Overview of My Doctoral Research Concealable i.i.d. Timing ... · Trojan Horse, rootkit, backdoors Malware for Profit: Spyware, Botnet, Keystroke loggers, and dialers Data Stealing

The Business Impact ofSpyware - Zift Solutionsdynamic.ziftsolutions.com/clients/trendmicro/pdfs/worry...viruses—that threatens computer operations.3 Spyware has unique characteristics

Understanding Malware: Spyware, Viruses and Rootkits Steve Lamb IT Pro Evangelist for Security Technologies [email protected]

Spyware - 123seminarsonly.com · revenues. Adware and spyware are similar to viruses in that they can be malicious in nature, however, people are now profitting from these threats

EEnnddppooiinntt SSeeccuurriittyy - Achab · The term malware encompasses viruses, spyware, adware and other types of unwanted programs. Endpoint Security automatically cleans or

Viruses and Spyware The Real Story

cis 442: chapter 2 viruses. malewares maleware classifications and types viruses logical and time...

Documents

environment virus

multifile infector

bsi viruses

bombs virus payloadstypes

file infectorsbootstrap

activation trapdoors

script virusesmacros

time bombstrojan horses