http://codingsec.net/2016/03/usb-thief-a-new-malware-that-is-nearly-impossible-to-detect/
Is any of the comodo’s protection components able to stop this malware (sandbox, AV, HIPS, firewall etc.)
Thank you.
1-Is it an executable file? Yes
2-Is it an unknown file? Yes
then it goes into sandbox…
Hi Melih,
What about fileless malwares?
http://whatis.techtarget.com/definition/fileless-infection-fileless-malware
Thanks,
What is a malware?
I would recommend you read about a cyber kill chain…you will then understand what you are referring to is actually delivery and exploitation rather than installation of malware…
also: doing injection into another process is a no no as far as CIS is concerned…we have been protecting process space from injection for a long time now…