One piece of malware can assume several variants as it mutates or is issued by its authors in different forms

Malware variants are created by modifying the original malware. There are many tools that are used to create variants but it can be as simple as modifying the way the malware behaves or even its size. Or it can involve encryption or other forms of hiding the true nature of the malware’s code. And, variants may be created by the malware code itself. Self-modifying malware such as polymorphic malware constantly changes itself by modifying the way it is masked, such as varying the encryption key it uses. The problem presented by a variant is that the previously defined signatures no longer work to detect them. This is why many other techniques, such as the behavioral techniques mentioned earlier have been developed. This is the reason that DayZero Systems has developed its unique signature-free detection technologies.

With DayZero Cerberus, it doesn’t matter if the malware has evolved. Cerberus will still be listening and it will contain the variant as quickly as it did the original.

If you would like, you can read more about malware variants here.

For readers who want a little more depth and a specific example, here’s an article about the Rovnix malware variants.

Sinkhole from malware campaign against users in Poland