malicious code within an application that waits to be called IoCs suspicious code Defences code review