1 Chief Technology Officer at CQR Cybersecurity.
2 Senior Penetration Tester.
World Journal of Advanced Research and Reviews, 2025, 26(02), 3154-3166
Article DOI: 10.30574/wjarr.2025.26.2.1966
Received on 12 April 2025; revised on 19 May 2025; accepted on 21 May 2025
Cybercriminals use new antivirus evasion techniques in their malware to continue operating in a system despite security programs. It explores how the newest malware uses obfuscation, packing, anti-debugging, and tampering with system security to bypass modern protection solutions at endpoints. The research points out that, attackers find ways to take advantage of weaknesses in antivirus heuristics, signature databases, and models that analyze behaviors. Hackers give additional focus to modifying programs, editing data in the hex format, dodging debuggers, and using file-loading tools. The research group also studied how measures like Windows’ SmartScreen and SafeSEH prevent bad software from being started. Detection by today’s antivirus solutions has improved, but it turns out that most evasion techniques can still work because they are flexible and mutable. As a result, organizations must always work on new methods of preventing attacks and stay informed about any threats that may arise.
Malware Evasion; Code Obfuscation; Anti-Debugging; File Binding; Antivirus Detection; Runtime Packers
Preview Article PDF
Bogdan Barchuk and Kyrylo Volkov. Antivirus evasion techniques in modern malware. World Journal of Advanced Research and Reviews, 2025, 26(2), 3154-3166. Article DOI: https://doi.org/10.30574/wjarr.2025.26.2.1966