Fileless malware

Fileless malware

An Overview about the Cyberattacks in Grid and Like Systems

Published in Fadi Al-Turjman, Smart Grid in IoT-Enabled Spaces, 2020

Fileless malware is a type of memory-resident malware. As the term suggests, it is malware that operates from a victim’s computer’s memory, not from files on the hard drive. Because there are no files to scan, it is harder to detect than traditional malware. It also makes forensics more difficult because the malware disappears when the victim computer is rebooted. In late 2017, the Cisco Talos threat intelligence team posted an example of fileless malware that they called DNSMessenger.

Cyber-Espionage Malware Attacks Detection and Analysis: A Case Study

View Article

Journal Information

Published in Journal of Computer Information Systems, 2022

Ilker Kara

In this study, the analysis of volatile memory allows the detection of malware by only examining the states in the system memory. In addition, another important advantage is that the analysis allows the examination of fileless malicious software, which leaves no traces on the hard disk.14 The new generation of fileless malware runs in the victim’s system memory or survives until shutting down the system. Thus, fileless malware detection is almost impossible for typical signature-based anti-virus programs.

Explore chapters and articles related to this topic

An Overview about the Cyberattacks in Grid and Like Systems

Cyber-Espionage Malware Attacks Detection and Analysis: A Case Study