Dridex trojan v4 versus Comodo HIPS

Does comodo Defence plus intercepts this latest injection technique?( question for developers).


Yep it was asked before here: https://forums.comodo.com/news-announcements-feedback-cis/new-method-could-let-windows-malware-bypass-detection-t117001.0.html using the same method of “atombombing”

I am still not sure if it means comodo will intercept the actual trojan as it is just a POC tested. i wish developers could test the actual malware specified.

Malware devs use available techniques “as is” most of the time. Let’s not give them too much credit. :stuck_out_tongue:

Yes, don’t give them credit. Just close your eyes and keep singing about your favourite software.