How antivirus software detect/remove new unknown virus?

[Steve]

How does antivirus software detect new unknown virus? Do the antivirus
software developers reverse engineer the virus executable? I want to
learn more on how antivirus software works.

please advice. thanks

 

[foghollow]

How does antivirus software detect new unknown virus? Do the antivirus
software developers reverse engineer the virus executable?

Yes.
Also, the av app monitors the system for suspicious activity - unusual amounts of email sending or
port usage, creation of autorun files, registry edits that will autorun things or run things from Temp
or adjust settings that should not normally be adjusted, etc