Introduction
In this post I explore several malware obfuscation techniques used to evade antivirus detection. It’s part of my ongoing Malware Development series where I discover the world of malware development.
⚠️ Warning: This content is for educational and defensive security research purposes only. Do not use these techniques on systems or networks you do not own or have explicit permission to test.
Windows applicatons
Windows application make use of dynamic-link libraries (DLL). These are libraries in Microsoft Windows that can contain code, functions, data and resources. The kernel32.dll is one of core DLL files in Windows. It handles core functions such as memory management, file input/output, and process/thread creation.
