Open Access
Table 7.
Validation sample results
| Category | Evasive technique | Results (rounds) |
||
|---|---|---|---|---|
| Antitoxin | ACS | Linear | ||
| Time-based logic bomb | Checking the time | 2 | 5 | 31 |
| Language-based logic bomb | Checking the language | 4 | 17 | 32 |
| Timing | Checking the time interval of behaviors | 4 | 17 | 32 |
| Hardware | Checking the number of processors | 4 | 17 | 32 |
| Checking the size of RAM | 4 | 17 | 32 | |
| Checking for specific MAC addresses | 4 | 17 | 32 | |
| Software | Checking for specific DLLs | 4 | 17 | 32 |
| Unsupported technique | Checking the number of files in specific folder | 43 | 60 | 34 |
| C2 “download”: Downloading payload from http server | 62 | 85 | 120 | |
| C2 “systeminfo”: Sending the information of victim to the server | 43 | 60 | 34 | |
| C2 “screenshot”: Taking a screenshot and send to the server | 81 | 83 | 60 | |
| Total | 81 | 85 | 120 | |
Current usage metrics show cumulative count of Article Views (full-text article views including HTML views, PDF and ePub downloads, according to the available data) and Abstracts Views on Vision4Press platform.
Data correspond to usage on the plateform after 2015. The current usage metrics is available 48-96 hours after online publication and is updated daily on week days.
Initial download of the metrics may take a while.