Fileless malware runs entirely from memory to make detection harder

http://betanews.com/wp-content/uploads/2013/10/hacker-malware-600x400.jpg

Traditional malware infections usually require a file object to be placed on the system which makes it relatively easy for them to be detected and removed.

Now though there’s a stealthier threat uncovered by security company Malwarebytes. Poweliks is an infection that runs without a filesystem object, completely from the registry and memory using rundll32.exe, javascript and a create on-the-fly dll.

Code can be injected into the machine via a fake landing page which makes traditional security solutions like white listing ineffective in combating it.

Read more: Fileless malware runs entirely from memory to make detection harder

Story added 11. November 2014, content source with full text you can find at link above.