Category : malware

Hello my problem is that every c++ executable I upload is marked as cve by Virustotal. What is cve? Code of one of files: #include <iostream> #include <regex> using namespace std; int main(){ } and its virustotal scan: https://www.virustotal.com/gui/file/2f459bb8fa8bbd6096d0acb96f94c78c114f1c3c0f6c2f0478d5489b3a8b2122/detection Source: Windows Que..

Read more

This is bizarre, almost the kind of thing that acts as a dream check. Whenever I copy and paste the following string: ‘reducedTransparencyFallbackColor’, either on its own or as part of a greater selection, it pastes as a random string which looks something like this: rLKVFk3lf9GjskqfjXWsFJdIeAmAogg6dk (note that I "scrambled" the above, in case the ..

Read more

I’ve been researching on AMSI (Anti Malware Scan Interface) for a while and AFAIK Powershell is using AMSI to check for malware signature only when "Invoke-Expression" is called. This is pretty effective but only when we provide appropriate signatures. In fact malware author often obfuscate their script to make them harder to be detected. For ..

Read more