Our most recent detection statistics show that using Visual Basic code in malicious documents is a trend on the rise. So why have malware authors turned to Visual Basic to do their bidding? 
Tag Archives: SophosLabs
Duping the machine – the cunning malware that throws off researchers
Traditionally, when malware detects that it is not running in a genuine victim setting, it will simply exit immediately. But there’s a certain subset of malware families that are more cunning when they detect an analysis environment…
From the Labs: PlugX – the next generation
In this new paper from SophosLabs, Principal Researcher Gabor Szappanos takes a look into a new variation of the PlugX malware.