Hide'n'Seek?                                                                                
- Anatomy of Stealth Malware

As much as stealth malware seemed to fade away with the DOS era, it might
make a loud comeback in modern day trojans.
                                                                                            
Stealth features have been adapted to the Windows world and show up more and
more often in coming malware. Coupled with the excessive complexity of modern
operating systems malicious programs can hide using very simple methods.

In the presentation I examine stealth techniques starting from simple tricks
to dissection of several kernel-based rootkits. The paper mainly concentrates
on Windows NT user and kernel space stealth code but some Windows 9x related
topics are also covered.
                                                                                            
The last part discusses possible ways of detection either by programs 
(eg. Antivirus) or manual inspection.