As I understand it, virus programs will use MD5 hashes as well as other types of program fingerprinting to verify programs. This method would undoubtedly set off alarms on these programs despite not changing the file size. The binary "signature" would still look different.

It seems like a cool...

[ more ]