Serious Discussion AVAST is letting this malware run even with Hard Mode enabled.

P

Pilot777

Level 1
Thread author
Apr 25, 2022
34
AVAST is letting this malware (VirusTotal) run freely despite Hardened Mode being enabled. I find it difficult to believe that this sample is on the Avast safe software list. Other samples do get blocked by Hardened Mode just fine.
154458.jpg

153815.jpg


153649.jpg
 
Last edited by a moderator:
  • Like
  • Wow
Reactions: B-boy/StyLe/, Zero Knowledge, Zartarra and 5 others
Andy Ful

Andy Ful

From Hard_Configurator Tools
Verified
Honorary Member
Top Poster
Developer
Well-known
Dec 23, 2014
8,510
Pilot777 said:
AVAST is letting this malware (VirusTotal) run freely despite Hardened Mode being enabled. I find it difficult to believe that this sample is on the Avast safe software list. Other samples do get blocked by Hardened Mode just fine.
Click to expand...

It is the MHDDoS_Proxy (a tool used in DDoS attacks on Russian targets). The info can be found via Google. I think we should not talk too much about it. :unsure:
 
Last edited:
  • Like
  • Wow
  • +Reputation
Reactions: B-boy/StyLe/, Zero Knowledge, vtqhtr413 and 7 others
P

Pilot777

Level 1
Thread author
Apr 25, 2022
34
Andy Ful said:
It is the MHDDoS_Proxy (a tool used in DDoS attacks on Russian targets). The info can be found via Google. I think we should not talk too much about it. :unsure:
Click to expand...
Oh, ok. So, AVAST, unlike Bitdefender, Norton, Microsoft, Emsisoft, Symantec, and others, allows it's users to engage in malicious DDoS attacks. And AVAST considers the DDoS attack tool to be safe...
 
  • Like
  • HaHa
Reactions: Nevi, B-boy/StyLe/, brambedkar59 and 2 others
SeriousHoax

SeriousHoax

Level 49
Verified
Top Poster
Well-known
Mar 16, 2019
3,862
I remember finding this tool in a malware collection a while back. Probably more than a year ago. At that time only Kaspersky was detecting it. Then I submitted to a few vendors and remember Bitdefender creating a signatures very soon as usual. I think I also sent to Avast. Since even hard mode is not blocking it, it should mean that it is whitelisted by Avast on purpose.
Are they allowing it only because it is/can be used by Ukraine against Russian targets? That would be awful if that's the case. I'm just speculating of course and probably should stop talking anymore about it :unsure:
 
  • Like
  • +Reputation
  • Hundred Points
Reactions: Nevi, B-boy/StyLe/, Virtuoso and 7 others
brambedkar59

brambedkar59

Level 31
Verified
Top Poster
Well-known
Apr 16, 2017
2,097
SeriousHoax said:
I remember finding this tool in a malware collection a while back. Probably more than a year ago. At that time only Kaspersky was detecting it. Then I submitted to a few vendors and remember Bitdefender creating a signatures very soon as usual. I think I also sent to Avast. Since even hard mode is not blocking it, it should mean that it is whitelisted by Avast on purpose.
Are they allowing it only because it is/can be used by Ukraine against Russian targets? That would be awful if that's the case. I'm just speculating of course and probably should stop talking anymore about it :unsure:
Click to expand...
If that is true i.e. they are whitelisting a confirmed malware then it erodes all some of the confidence in Gen Digital (Avast/AVG/Norton) for me.

There is no such thing as good malware: David Liff
Click to expand...

Edit: replaced "all" with "some of"
 
Last edited:
  • Like
Reactions: Nevi

Similar threads

S
Serious Discussion How safe is the malware scan of NexusMods
Replies
9
Views
480
General Security Discussions
Studynxx
S
RoxasDev
    • Like
    • Applause
    • +Reputation
App Review Avast Free 2023 - Test
Replies
1
Views
1,403
Video Reviews - Security and Privacy
Seandc33
S
Trident
    • Like
    • Applause
    • +Reputation
  • Poll
Serious Discussion Pre-execution vs post-execution protections explained
Replies
6
Views
1,068
General Security Discussions
Trident
Trident

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

Quick Navigation

Forum Rules Warning System Welcome Guide Two-factor Authentication

User Menu

Login

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top