A. Mohanta, A. SaldanhaMalware Analysis and Detection Engineeringhttps://doi.org/10.1007/978-1-4842-6193-4_10

10. Code Injection, Process Hollowing, and API Hooking

Abhijit Mohanta¹ and Anoop Saldanha²

(1)

Independent Cybersecurity Consultant, Bhubaneswar, Odisha, India

(2)

Independent Cybersecurity Consultant, Mangalore, Karnataka, India

Malware can drop new files on the system, create new registry keys and values, initiate network connections, create new processes, insert new kernel modules, and so forth. Malware can also force/inject/insert itself into and modify existing running processes, including OS processes and the underlying kernel. But most of these techniques used by the malware for this are not the ...

Get Malware Analysis and Detection Engineering: A Comprehensive Approach to Detect and Analyze Modern Malware now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Malware Analysis and Detection Engineering: A Comprehensive Approach to Detect and Analyze Modern Malware by Abhijit Mohanta, Anoop Saldanha

10. Code Injection, Process Hollowing, and API Hooking

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly