Malware in golang
#1
How to code in go to avoid malware detection? no idea how it is called but this thing with underlines as variables and encodings and stuff like that.
Reply Report
#2
(06-03-2023, 02:23 PM)fcurs3clul Wrote: How to code in go to avoid malware detection? no idea how it is called but this thing with underlines as variables and encodings and stuff like that.

There are 2 methods of malware detection, signatures and patteren matching.

To avoid signatures, you need to make sure your malware always has a different file hash becuase anti-malware gets file hashes from known malware and scans the files on the system and prevents files with the same file hash from running.

To avoid patteren matching is harder. The anti-malware recognizes certain patterens that a process is doing such as encrypting all the files on the system. To get around this you need to use heruistics or do something that encrypts the files as a byproduct such that your malware is not flagged as ransomeware if that's what you are trying to make.

With go, definetly use the go routines as the green threads are hard to detect malware on.
Reply Report
#3
(06-03-2023, 02:23 PM)fcurs3clul Wrote: How to code in go to avoid malware detection? no idea how it is called but this thing with underlines as variables and encodings and stuff like that.

I believe you’re asking how to write code in Go that can avoid malware detection. Malware authors are using Go (Golang) to evade detection and impede reverse engineering efforts 1. However, it’s important to note that writing malware is illegal and unethical.

If you’re looking to write code in Go that can avoid detection by antivirus software, there are a few things you can do. One approach is to use obfuscation techniques to make your code more difficult to analyze. This can include using variable names that are difficult to understand or using encryption to hide your code 2.

Another approach is to use behavior-based detection. This involves analyzing the behavior of your code at runtime to determine if it’s malicious. By doing this, you can avoid detection by antivirus software that relies on signature-based detection 1.

It’s important to note that while these techniques can help you avoid detection by antivirus software, they won’t necessarily make your code undetectable. Antivirus software is constantly evolving and improving, so it’s important to stay up-to-date on the latest techniques for avoiding detection
Reply Report



// $(".author_avatar img").error(function () { $(this).unbind("error").closest('.author_avatar').remove(); });