Y
Hacker News
new
|
ask
|
show
|
jobs
by
mid-kid
1473 days ago
Can't an LD_PRELOAD virus just hijack fopen/fread/etc to modify the contents of the file if its path matches the pattern you described?
1 comments
miohtama
1473 days ago
Yes it can. However I would assume the surface to block all diagnostics paths would be quite large and there is always some command/syscall left unblocked to detect any rootkit. Creating 100% stealth malware is possible, but difficult.
link