Over 25% of Malicious JavaScript Is Being Obfuscated, Research Shows

According to a new study of over 10,000 malicious JavaScript samples, over 25% of the samples analyzed use JavaScript obfuscation methods to prevent detection and analysis.

What Is Obfuscation?

Obfuscation is a powerful technique used by hackers and security teams all over the world. Both parties use it for different reasons, but their goal is the same: to make the source code indecipherable, hard to understand, and interpret.

Obfuscation is a technique frequently used by cybercriminals in order to make it more difficult to examine malicious scripts and to thwart security solutions.

Frequent obfuscation methods include:

Instruction pattern transformation; Metadata or unused code removal; Subroutine reordering Dummy code insertion; String encryption; Code transportation

Security researchers at cloud service company Akamai technologies have examined more than 10.000 malicious JavaScript samples including malware droppers, phishing pages, scammers, and cryptominers’ malware.

They noticed that more than 25% of the analyzed samples employ JavaScript obfuscation methods to avoid exposure. This percentage suggests that malicious actors who want to avoid detection continue to use obfuscation techniques.

As noticed by BleepingComputer, the majority of these obfuscated samples seem so to have similar code because they were bundled by the same packers, so their code

Read More: https://heimdalsecurity.com/blog/over-25-of-malicious-javascript-is-being-obfuscated-research-shows/