Non-Resident Virus
What is Non-Resident Virus?
Non-Resident VirusA virus that does not stay in memory after execution; it searches for and infects target files only while the host program runs, then exits.
A non-resident virus is a classic file-infector that performs its work synchronously and quickly: when its host program runs, it locates target files (often executables in the current directory or PATH), appends or prepends its code, then returns control to the host and exits memory. Because it does not stay resident, it cannot hook system calls or monitor activity in real time, but it is also simpler and harder to detect by tools that focus on running processes. Defences include behaviour-based anti-malware that watches new file modifications and process creation, code signing and integrity checks for executables, and least-privilege execution that prevents unprivileged programs from modifying system binaries.
● Examples
- 01
Classic file infectors like Vienna that scan a directory and infect .COM files.
- 02
Direct-action viruses that activate only when their carrier executable is launched.
● Frequently asked questions
What is Non-Resident Virus?
A virus that does not stay in memory after execution; it searches for and infects target files only while the host program runs, then exits. It belongs to the Malware category of cybersecurity.
What does Non-Resident Virus mean?
A virus that does not stay in memory after execution; it searches for and infects target files only while the host program runs, then exits.
How do you defend against Non-Resident Virus?
Defences for Non-Resident Virus typically combine technical controls and operational practices, as detailed in the full definition above.
What are other names for Non-Resident Virus?
Common alternative names include: Direct-action virus.