Verizon’s Ashish Thapar: Malware detection needs to shift to detecting anomalous behavior. Sandbox-evading malware detects when it’s being analyzed in a sandbox and shuts down and stays dormant. “That’s why it’s important that when we do reverse engineering, we look at both dynamic and static analysis,” he says. In this video interview, he discusses the ins and outs of the malware landscape and how to effectively fight polymorphic/sandbox-eager malware.”]
Source: https://www.bankinfosecurity.com/fighting-sandbox-evading-malware-a-11389