Mutating the Mutators

Presented at DEF CON 12 (2004), July 31, 2004, 11 a.m. (20 minutes).

Since the introduction of metamorphic stealth in the computer virus world, it has been suggested that the method can also be used to protect any, even legitimate, code. The only downfall of this technique is that how the engine manipulates the code remains constant. This allows the original code to be obtained by using an optimizer. The next step for this stealth method is to create an engine that will change how the code in manipulated. This speech will outline how to create an engine that integrates random code with alternate encoding of an instruction to create a semi-random set of instructions, which will fit into the metamorphic engine paradigm.

Presenters:

• Sean O'Toole
  Sean O'Toole is fresh out of college for Computer Science and Mathematics. He has been playing around with viruses since high school and had also taken independent studies on computer viruses in college. As well as the above, he also helped institutions such as NCAR use Artificial Life Algorithms for modeling.

Links:

• https://infocon.org/cons/DEF CON/DEF CON 12/DEF CON 12 video/DEF CON 12 - Sean OToole - Mutating the Mutators - Video.mp4
• https://www.youtube.com/watch?v=uUMGwAenAzA

Similar Presentations:

• DEF CON 24 (2016) / The Remote Metamorphic Engine: Detecting, Evading, Attacking the AI and Reverse Engineering
• REcon 2016 / The Remote Metamorphic Engine
• REcon 2022 / Samsara Metamorphic Engine