Anti-Antivirus- Concentrated Binary Evil!
There are loads of malware authors out there on the Internets. Some of them work for national groups, and others are just in it for the cash. So where does a virus author go when he needs to validate, in a secure fashion, that his own malware is undetectable by all the big AV companies?
Hiding Malware Right Behind Their Backs.
Maybe something like Scan4You. This is a hacker’s service that will store your binary malware, keep it out of the hands of the big AV companies, and will run corporate Antivirus scans against it every day. If an AV signature triggers, the hacker gets notified that his binaries can be detected.
From Networkforensics.com here:
Scan4u.biz is essentially a “criminal virustotal plus”. That is, it is a service where a miscreant can submit a newly created malware binary to gauge the detection rate of various antivirus vendors. While similar to virustotal in this regard, the key is that scanned binaries aren’t submitted to the antivirus vendors in question, as is done with virustotal. And it’s even affordable and easy to pay for…$25 a month or 15 cents per scan, and a discount for referrals. As well as flexible payment options and multiple contact points.
This means that your AV will only catch the old and busted viruses. It is simply blind to the real modern threats and malware that could impact your network. IDS, AV and firewalls won’t stop it.