Confused
"The VXers were smart to use the Mono framework as it allowed them to evade analysis and set a location-based trigger to deactivate the malicious features and avoid antivirus detection."
Do what now? What part of the Mono framework has suddenly become a virus writer's wet dream to allow their malware to evade analysis?