Want to detect malware implementation in .Net code? Following are the details. Malware after all is simply code that we wouldn’t volunteer to run.
Set up a registry entry, twiddle with an existsing one, dial home etc, can all be perfectly valid features.
You can use something like FXCop to check for mistakes that would lead to to potential securithy threats.
But after that it’s basically reverse engineering. Install it see if say a locked down browser or the better malware scanners think it’s a bad guy.
If you like this question & answer and want to contribute, then write your question & answer and email to freewebmentor[@]gmail.com. Your question and answer will appear on FreeWebMentor.com and help other developers.