ITPUB

Nov 17, 2015 · Information Security

How the New Upatre Variant Evades Dynamic Sandboxes

The article explains two simple yet effective sandbox‑evasion techniques used by a new Upatre Trojan variant—checking system uptime via GetTickCount and monitoring mouse movement—to bypass dynamic analysis environments and remain undetected by antivirus scanners.