Do you know any free software to protect against fileless malware attacks?

D

Deleted member 178

my point is that it is quite an old trojan,so why avast and emsisoft couldn't detect it,it's really a shame for them.
because powershell is allowed by most AVs. Emsisoft will introduce powershell abuses monitoring in their next build.
the real question is not if the AV could detect it or not, it is how the file get in your system and was ran..?
 
5

509322

my point is that it is quite an old trojan,so why avast and emsisoft couldn't detect it,it's really a shame for them.

Could be a new, undetected version of Poweliks. If the Emsisoft and Bitdefender scan engines did not detect it, then there are surely other scan engines that will not detect it either.

Also, it is possible that it was not Poweliks, but instead a detection of something else incorrectly identified as Poweliks by whatever scan engine that detected it. Zemana uses multiple scan engines, but whose engines those are is not revealed by Zemana. Scan engine designations of detected infections is not a super-precise science. The designations have been known to be incorrect from time-to-time.

Without investigation at the time of detection, it is speculation as to what it was.

You should expect that using an antivirus scanner is not going to detect stuff.
 

Andy Ful

From Hard_Configurator Tools
Verified
Honorary Member
Top Poster
Developer
Well-known
Dec 23, 2014
8,040
hey, i run my browser sandboxed and there is no use of whitelisting software to me as i am mostly offline and whitelisting software always asks or blocks my files.I am using many softwares,even one of my drive totally includes softwares only and this is quite painful and i can't recommend such products to my friends for the same reason.If one needs to run any app blocked by such products,then he has to unblock it,then there is no actual use of such softwares.

You can use Sandboxie. I used to try many software in this way. Most of them can run without any issues, and you do not bloat the system.
 

Winter Soldier

Level 25
Verified
Top Poster
Well-known
Feb 13, 2017
1,486
You can use Sandboxie. I used to try many software in this way. Most of them can run without any issues, and you do not bloat the system.
Yes except those who have to install some drivers and ... malware, many malware currently seems don not work under Sandboxie, maybe some of them are sandbox-aware, but that is not a problem :D
 

Sunshine-boy

Level 28
Verified
Top Poster
Well-known
Apr 1, 2017
1,759
@Prayag
free anti-exploit:
Malwarebytes Anti-Exploit
its beta and I think it should work against file-less malware like in your case but im not sure and IDK:pmaybe others can tell us
you can isolate your browser and solve the problem if that malware came from the internet
Free sandbox:360 sandbox or Comodo
IDK if Avg behavior shield can detect file-less malware?
otherwise, u have to pay for hitman pro alert or heimdal pro
 

Atlas147

Level 30
Verified
Honorary Member
Top Poster
Content Creator
Well-known
Jul 28, 2014
1,990
There are a ton of software that could potentially help with your situation but most of it would cause a slight inconvenience to use

CFW - good for auto sandboxing, auto clears once done. But sandboxed programs might not always work

ShadowDefender - good for trying out risky programs and won't break programs, works just like a sandbox, you can clear your system when you're done. But it literally reverts your system all the way to where you enabled the shadow mode.

A decent AV - Like you said, KSC warned you about the malware but did not solve it for you, if you had Kaspersky antivirus then it probably would have. But it costs money.
 

GonzitoVir

Level 5
Verified
Well-known
May 16, 2017
198
The detection by zemana was "trojan poweliks: fileless malware".

I had a very good experience with Zemana too. My main antimalware software was Emsisoft but I noticed that my laptop was overheating and also some programs (including Windows 10 itself) were crashing or freezing for many seconds.

Zemana found a Trojan:Win32/Poweliks and a couple more malwares and since then everything was good again!
Neither Panda or Emsi couldn't detect anything bad in my system.

I'm in debt with Zemana that I'll go for the Ultimate version when it finally comes out.
 
  • Like
Reactions: AtlBo and darko999

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

User Menu

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top