Reply to post:

Forget BYOD, this is BYOVM: Ransomware tries to evade antivirus by hiding in a virtual machine on infected systems

ThatOne Silver badge

Still, installing a 70 MB program plus a 200+MB virtual machine to hide a 50KB virus is slightly overkill IMHO...

Also, normal users might wonder what the heck is VirtualBox doing on their computer all of a sudden. Hardly a stealthy approach. Which means that, even if the virus itself is hard to detect, the infection is pretty easy to spot, not to mention it might be possible for company administrators to simply block any new/additional installation of any hypervisor on company computers, thus blocking not only this, but any similar future virus.

POST COMMENT House rules

Not a member of The Register? Create a new account here.

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon

SUBSCRIBE TO OUR WEEKLY TECH NEWSLETTER

Biting the hand that feeds IT © 1998–2020