Anti-Malware Technical Reference - ZyXEL Communications ZyWall ATP series User Manual

The following table describes the labels in this screen.
Table 214 Configuration > Security Service > Anti-Malware > Signature
LABEL
Signatures Search
Query all signatures
and export
Query Result
#
Name

28.4 Anti-Malware Technical Reference

Types of Malware
The following table describes some of the common malware.
Table 215 Common Malware Types
TYPE
File Infector
Boot Sector Virus
Macro Virus
Email Virus
Polymorphic Virus
Malware Infection and Prevention
The following describes a simple life cycle of malware.
A computer gets a copy of malware from a source such as the Internet, email, file sharing or any
1
removable storage media. The malware is harmless until the execution of an infected program.
The malware spreads to other files and programs on the computer.
2
The infected files are unintentionally sent to another computer thus starting the spread of the malware.
3
Chapter 28 Anti-Malware
DESCRIPTION
Enter the name, part of the name or keyword of the signature(s) you want to find and click
Search. This search is not case-sensitive and accepts numerical strings.
Click Export to have the Zyxel Device save all of the anti-malware signatures to your
computer in a .txt file.
This is the entry's index number in the list.
This is the name of the anti-malware signature. Click the Name column heading to sort your
search results in ascending or descending order according to the signature name.
Click a signature's name to see details about the malware.
DESCRIPTION
This is a small program that embeds itself in a legitimate program. A file infector is able to
copy and attach itself to other programs that are executed on an infected computer.
This type of virus infects the area of a hard drive that a computer reads and executes
during startup. The virus causes computer crashes and to some extend renders the infected
computer inoperable.
Macro viruses or Macros are small programs that are created to perform repetitive actions.
Macros run automatically when a file to which they are attached is opened. Macros
spread more rapidly than other types of viruses as data files are often shared on a network.
Email viruses are malicious programs that spread through email.
A polymorphic virus (also known as a mutation virus) tries to evade detection by changing
a portion of its code structure after each execution or self replication. This makes it harder
for an anti-malware scanner to detect or intercept it.
A polymorphic virus can also belong to any of the virus types discussed above.
ZyWALL ATP Series User's Guide
531