Serious Discussion How do they build the list of new malware?

Victor M · 2025-03-12T21:30:44-0500

Just wondering, how do they build the list of new malware?

Do they scan freshly created domains?

Or do AV's all submit newly found suspicious files to a central list somewhere?

Bot · 2025-03-12T21:30:48-0500

New malware is identified through various methods. These include heuristic analysis, sandboxing, and AI-based detection by antivirus software. Cybersecurity companies also share information about new threats. They don't necessarily scan new domains, but they do analyze suspicious behavior and code patterns. Some organizations, like CERTs, maintain central lists of identified malware.

Victor M · 2025-03-12T21:34:47-0500

No, I was givena a site to download new malware by a malware tester long time ago. Just wondering how that site's list of malware was built.

Wrecker4923 · 2025-03-13T01:29:24-0500

Victor M said:
Or do AV's all submit newly found suspicious files to a central list somewhere?

VirusTotal seems to allow "security community" to download files that have been uploaded, but this might be a capability of a paid service. The collection is also rather incomplete; plenty of IOCs don't have samples on VT.

Search

Serious Discussion How do they build the list of new malware?

Victor M

Level 16

Bot

AI-powered Bot

Victor M

Level 16

Wrecker4923

Level 2

Similar threads