sandbox-evasion-implement

CRITICAL E006: Malicious code pattern detected in skill scripts.

• Malicious code pattern detected (high risk: 1.00). This document is an explicit how-to guide for implementing sandbox-evading malware: it instructs combining VM/sandbox detection, timing and user-interaction checks, target-only "guardrails", in-memory decryption and execution of payloads, direct syscalls to bypass hooks, and slow/delayed execution—clear instructions for covert payload delivery, remote execution and evasion of analysis.

MEDIUM W013: Attempt to modify system services in skill instructions.

• Attempt to modify system services in skill instructions detected (high risk: 1.00). This skill explicitly instructs implementing sandbox-evasion and anti-analysis techniques (environment fingerprinting, payload decryption and in-memory execution, trace clearing) to enable running malicious payloads on the host, which directly encourages compromising the machine's state.