Virus in Memory

  • 4 September 2014
  • 1 reply
  • 14 views

Hi,
 
There is an increasing use of viruses which only reside in memory with  no trace on disk, I suspect that WRSA would catch these due to malicious activity but I would like confirmation of this
 
Paul

1 reply

Userlevel 7
Badge +56
@ wrote:
Hi,
 
There is an increasing use of viruses which only reside in memory with  no trace on disk, I suspect that WRSA would catch these due to malicious activity but I would like confirmation of this
 
Paul
Yep, we should catch these.  Our approach is to evaluate any running process, so that will catch things that don't save themselves to disk.

Reply