Advice Request Did somebody test ESET's HIPS against ransomware?

Please provide comments and solutions that are helpful to the author of this topic.

Status
Not open for further replies.

giulia

Level 5
Thread author
Verified
Nov 30, 2016
235
hi

may i ask if somebody does test some variant of ransomeware against eset hips?

i would like to test some of them ,inside a virtual machine but i'm pretty scarry of them


thanks
eset hips include a new feature
XUnnRt2.png
 

tim one

Level 21
Verified
Honorary Member
Top Poster
Malware Hunter
Jul 31, 2014
1,086
The question is: can HIPS detects process hollowing?

"Process hollowing is a technique used by some malware in which a legitimate process is loaded on the system solely to act as a container for hostile code. At launch, the legitimate code is deallocated and replaced with malicious code."

More info:

Marco Ramilli's Blog: Process Hollowing
 

SHvFl

Level 35
Verified
Honorary Member
Top Poster
Content Creator
Well-known
Nov 19, 2014
2,333
The question is: can HIPS detects process hollowing?

"Process hollowing is a technique used by some malware in which a legitimate process is loaded on the system solely to act as a container for hostile code. At launch, the legitimate code is deallocated and replaced with malicious code."

More info:

Marco Ramilli's Blog: Process Hollowing
I guess eset hips should protect against it.
HIPS Question - ESET Smart Security & ESET Internet Security - ESET Security Forum
 

tim one

Level 21
Verified
Honorary Member
Top Poster
Malware Hunter
Jul 31, 2014
1,086

RejZoR

Level 15
Verified
Top Poster
Well-known
Nov 26, 2016
699
ESET's HIPS is a disappointment. Compared to better behavior blockers, it's hard to configure, it's clumsy and it doesn't really catch much without bombarding the user with questions.
 
Status
Not open for further replies.

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

User Menu

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top