/*...............................................*/
static UINT flags_before,flags_after;
static void
CheckForVM(void)
{
flags_before = flags_after = 0;
__asm {
mov eax,0
mov ecx,0
lahf
mov byte ptr flags_before,ah
imul ecx,ecx // ZF should not be set.
lahf
mov byte ptr flags_after,ah
}
}
/*...............................................*/
...
CheckForVM();
printf("Flags changing state: %lu",flags_before ^ flags_after);
...
pingram wrote:mainly that malware is catching up to par with other legitimate software that now has been discovered to detect whether the environment is virtual or not
pingram wrote:What I took away from the article was not so much ... that Virtual Machines put anyone at greater risk
Users browsing this forum: No registered users and 4 guests