Emulation testbeds have been considered by security practitioners to be a useful tool to conduct operational security exercises and a variety of research. For almost as long, malware writers have sought to thwart such tools.
SophosLabs has come across some fresh examples of this – specifically, anti-emulation Android malware. The findings are in a Sophos Blog write up by Android specialists Chen Yu, William Lee, Jagadeesh Chandraiah and Ferenc László Nagy.
In it, they explain how Android malware is copying the anti-emulation techniques that have served Windows malware writers so well.https://nakedsecurity.sophos.com/2017/04/13/android-malware-creators-throw-up-a-roadblock-to-thwart-the-good-guys/