Generic detection

Recognising malware by its similarity to known items

Generic detection is a form of heuristics commonly implemented in anti-malware software. Items not identified exactly by means of a signature can sometimes be considered to be similar enough to a known item to merit an alert, and in many cases even a class identification.

Products alerting on generic detection will often use broader naming than with exact detection, perhaps classing something as 'fam' or '.gen' to indicate that it belong to the same family or genus but cannot be labelled as a specific variant.

Glossary


	Similar entries Emulation Family Sandbox(ing) Signature Unpacking Variant Virtualisation See also Glossary Resources

Quick Links

Poll

The Japanese government is reported to have commissioned a 'defensive virus'. Is 'defensive' malware ever a good idea?
Leave a comment
View 11 comments

Jobs


	In Virus Bulletin's jobs pages among others: German Speaking Technical Support Engineer (Berkshire, United Kingdom) Anti-Virus Researcher (Redmond, WA, United States)

Virus Bulletin currently has 224,240 registered users.

Fighting malware and spam

Generic detection

See also