Most Malware today use multiple types of evasion techniques to get past security systems. While somewhat varied, they are all built upon the same premise.

They hide in a packer to resemble a legit file

And stay hidden in it until they find a safe, ultimate environment to unpack in.

To find out if a certain environment is ideal they send out a query

While the malware is investigating its environment for these running processes, it keeps any malicious code compressed in an encrypted state, where it cannot be detected. It only unpacks and executes this code when it can be sure none of the aforementioned security tools or compromising elements are in place.

This is where Minerva VR™ comes in

Minerva’s Environment Simulation Technology is built upon a simple premise. As the malware does not unpack or run the code in an environment that appears unsuitable, we can simulate such an environment and prevent the malware from executing.

so the malware stays asleep in the packer indefinitely

This is how evasive malware gets onto your endpoints...

The malware hides in packers, or seamlessly blends in with files and legit code.

It tries to conceal its true nature, often avoiding analysis tools, waiting for a safe opportunity to strike.

Evasive malware avoids executing in an environment it considers hostile to avoid being detected.

This is Where Minerva's
Anti-Evasion Platform Comes In

Minerva Labs outsmarts and deceives malware into remaining dormant by lying to the queries it sends out - simulating a hostile and inaccessible endpoint where the malware will not execute

Theses are just examples, Minerva Labs addresses the widest variety of threat scenarios from ransomware to fileless attacks; environment-aware to weaponized document attacks. Minerva’s Anti-Evasion Platform includes multiple modules that reinforce each other to block unknown threats that employ different evasive techniques…
So, the malware stays
inactive indefinitely.

Finally, Minerva Increases the value of your entire defense ecosystem by notifying your other tools of existence of the unknown malware.

Minerva Anti-Evasion Platform
A comprehensive endpoint solution that prevents
attacks designed to evade your existing defenses

Ready to see us in action?


SANS Webinar - Using Anti-Evasion to Block Stealth Attacks

This webcast will explain a unique approach to preventing evasive malware from infecting endpoints.

Watch >>

Evasive malware: How and why your anti-malware strategy needs to evolve beyond Anti-Virus

Discover the reasons why evasion techniques work, even with a layered defense approach and how to evolve your endpoint protection strategy, to cover the gap.

Download >>

A SANS Institute Product Review

See how Minerva Labs’ Anti-Evasion Platform performed in the SANS Institute test

Download >>
See All Resources >>