As a result there is a period between a new piece of malware being released ‘into the wild’ and when its signature can be incorporated into antivirus products. An antivirus program may contain thousands of signatures, but it can only detect malware for which a signature has been identified and published by the antivirus program’s authors.
A malware’s signature is a distinctive pattern of data either in memory or in a file.
