Exploiting the evasive nature of malware

Advanced malware today uses evasion techniques to get past anti-virus products, sandboxes, and other security systems. Instead of infecting every machine they land on, they actually camouflage their malicious code, staying in a “sleep” state until they’re in the ideal environment for the attack. Only then do they unpack and execute the code. In this sleep state, the malicious code can’t run or cause any damage. This very malware evasion mechanism is what we take advantage of.

Stopping the clock on malware

Minerva’s Environment Simulation Technology is situated between the malware and the operating system. Every time the malware tries to sense what conditions and defenses are present, Minerva simulates an environment that would be unideal for the malicious code to execute. As the malware believes the environment is not ideal, it stays asleep indefinitely, while the security professional is notified of the presence of suspicious code

Ransomware Tampering APT Takeover

Ransomware Prevention

Minerva prevents any damage that might potentially be done by any ransomware including CryptoWall, CTB-Locker, VaultCrypt, etc.

With Minerva - you will never lose your data.

Learn More >>

Ransomware Tampering APT Takeover

Tampering protection

Minerva protects OS and critical applications including browsers and processes responsible for the intake of credit card information, etc.

Ransomware Tampering APT Takeover

APT & Targeted Attacks Interruption

Minerva prevents the deadliest unknown threats by creating an environment in which the malware refrains from execution, just before the installation phase (5th phase in the "Cyber Kill Chain") and before any damage has been done.

Minerva prevents targeted attacks without the need to detect them first and without other prior knowledge.

Ransomware Tampering APT Takeover

Take Over Prevention

Minerva protects organizations from hostile takeover of their endpoint assets by Remote Access Trojans (RAT).

Offline operation mode
Fully standalone mode which keeps protecting endpoints even when disconnected from the organizational network.

Easy Deployment
As a super-thin agent, Minerva can be installed on thousands of machines in no time. No restart is required.

Lightweight
As there is no heavy client running in the background, and no active detection application scanning processes and files, Minerva does not use up any resources, and has no impact on the end user experience.

No false positives
With Minerva in place, there are no false-positive alerts. Once a notification appears, you know that a real threat was neutralized and prevented before any damage has been done.

No ongoing maintenance
Minerva does not need any ongoing upkeep to ensure it’s operating at its best. It even updates itself automatically with new simulations and artifacts on a regular basis.

Supports all Windows OS
Embedded systems, Point of Sale (PoS) and additional legacy systems, as well as physical and virtual environments (e.g. VDI Terminal Server).

Fully standalone mode which keeps protecting endpoints even when disconnected from the organizational network.

Offline operation mode

As a super-thin agent, Minerva can be installed on thousands of machines in no time.
No restart is required.

Easy deployment

As there is no heavy client running in the background, and no active detection application scanning processes and files, Minerva does not use up any resources, and has no impact on the end user experience.

Lightweight

With Minerva in place, there are no false-positive alerts. Once a notification appears, you know that a real threat was neutralized and prevented before any damage has been done.

No false positives

Minerva does not need any ongoing upkeep to ensure it’s operating at its best. It even updates itself automatically with new simulations and artifacts on a regular basis.

No ongoing maintenance

Embedded systems, Point of Sale (PoS) and additional legacy systems, as well as physical and virtual environments (e.g. VDI Terminal Server).

Supports all Windows OS

Defense Ecosystem Enhancement

Minerva increases the value of your entire defense ecosystem by notifying your other security tools of the existence of the unknown malware, so they can find and eradicate it even faster, adding incredible value to your existing security and defense applications. Minerva integrates with endpoint security solutions, network security solutions and cloud intelligence solutions:

Resources

SANS Webinar - Using Anti-Evasion to Block Stealth Attacks

This webcast will explain a unique approach to preventing evasive malware from infecting endpoints.

Watch >>

Integrating Minerva Anti-Evasion Platform with McAfee

Watch a demo of how Minerva Labs Anti-Evasion Platform boosts your endpoint security when integrated with McAfee and enhances your investment

Watch >>

Evasive malware: How and why your anti-malware strategy needs to evolve beyond Anti-Virus

Discover the reasons why evasion techniques work, even with a layered defense approach and how to evolve your endpoint protection strategy, to cover the gap.

Download >>

See All Resources >>

Prevention before detection

Exploiting the evasive nature of malware

Stopping the clock on malware

Ransomware Prevention

Tampering protection

APT & Targeted Attacks Interruption

Take Over Prevention

Defense Ecosystem Enhancement

Ready to see us in action?

Resources

SANS Webinar - Using Anti-Evasion to Block Stealth Attacks

Integrating Minerva Anti-Evasion Platform with McAfee

Evasive malware: How and why your anti-malware strategy needs to evolve beyond Anti-Virus