Microsoft is yet to release the new operating system under the name #Windows 10. It is said that it will be last new operating system release for Microsoft. Recently a new feature that has been added to the Windows 10.
One of the major problem is the damage due to the Malware. They are the malicious code that can be used to cause massive damage to user files or data. From Windows 8 all the softwares are managed as applications.
Therefore for Windows 10 also they will be considered as an application and these days the detection of malware is very difficult because of their visibility level.
Usually Malware are not transmitted as in the original format as they will be detected by the Antivirus program therefore the attackers will make them undergo few changes before sending them. This changes made the malware undetectable.
In Windows 10, an automatic malware detection mechanism has been adopted named as #Anti Malware Scan Interface.(#AMSI).
Another technique that the malware incorporates to remain undetectable is that the scripts run in the application memory and does not leave any file in the disk, thus AV can not catch them.
The working of the new feature AMSI is as follows. While the malicious script might go through several passes of deobfuscation, it needs to supply the scripting engine the plain, unencoded code. When this has been carried out the application can now call the new Windows AMSI APIs to request a scan of this unprotected content.
This feature is expected to prevent the malware execution such as Scripting Malware. This feature will be available to all the users once Microsoft launches #Windows 10.
P.S : The post is to create awareness and not to be misused.
No comments:
Post a Comment