sandbox detection
I paid a visit to the norman sandbox,which I found this code couldbe enough to bypass norman sandbox emulator edtection and somehow f-secure emulator too(not sure 100% about the latter), see the following code: Read the rest of this entry »
What the hell?
Today I noticed the option on virustotal.com (“Dont distribute sample”) was disabled ,they put an explanation for that on their blog ,in short they explained that decision was taken as a result of the continuous AVers complaints about how its been used by virii developers to create new UD samples.
