- Jun 18, 2022
- 480
Self-Made Fortran Malware Analysis
- Thread starter XylentAntivirus
- Start date
- Dec 12, 2016
- 1,926
Still amazed virus scope catched it
Got it enabled only in the container on my system but maybe if it gets better I could enable it globally
- Dec 12, 2016
- 1,926
Not at first site but by manually
And maybe the behavior components , hips can prevent the infection itself
- Jun 18, 2022
- 480
- Oct 17, 2023
- 186
VirusScope is amazing at analyzing unknown apps in sandbox it uses Static Analysis and Dynamic Analysis to do that
- Sep 2, 2021
- 2,720
MS Defender configured
But once I reset it to default in DefenderUI, it passes without reaction (which was to be expected).
But once I reset it to default in DefenderUI, it passes without reaction (which was to be expected).
- Jun 18, 2022
- 480
- Sep 2, 2021
- 2,720
- Jun 18, 2022
- 480
Sorry I missed. @harlan4096 could you please reply again??@harlan4096 has already done so and mentioned
- May 9, 2024
- 128
- Apr 28, 2015
- 9,036
I see You got no bootable systems, but in the case of Kaspersky, system was not destroyed up to that point, in fact I could reboot without issues, but all my custom settings in my local account were changed to default or removed, for example the taskbar icons pinned, the order of the icons in the desktop, the color theme of the session, things like that, but system was completely usable.
Last edited:
- Mar 17, 2023
- 574
Shaka when walls fellLest Eset's dynamic analysis isn't sad alone, Sophos also totally lost this battle. While its screens show significant damage to the system.
View attachment 286842
View attachment 286843
Temba his arms wide
- Nov 9, 2022
- 676
- Dec 12, 2016
- 1,926
The emulation from the extension failed but pretty sure if you actually executed the sample the behavior components would have stopped it and probably the same with ksn , liveguard both failed but if you actually executed the sample it just might have stopped the infection using some behavior components
- Dec 12, 2016
- 1,926
Above harlan showed that actually execution ofthe sample would cause behavior components to defend at least some damage and the same will happen with some other avs
(Edit Harlan below showed that it was actually the hips component that blocked some of the malicious activity)
Last edited:
- Apr 28, 2015
- 9,036
Hum actually the sample did not trigger any behavior component (although KOTIP service tagged it as malware in 1st execution), but probably Intrusion Prevention, putting it in Low Restricted group, minimized in part, the malicious activities, and avoided to completely destroy the system.
- Dec 12, 2016
- 1,926
I don't think it was in the first execution in the opentip sandbox but changing the hash is probably enough to find out
- Dec 12, 2016
- 1,926
It's easy to evade sophos anyway as they literally load services of sophos software into the sandbox of intelixLest Eset's dynamic analysis isn't sad alone, Sophos also totally lost this battle. While its screens show significant damage to the system.
View attachment 286842
View attachment 286843
bazang
Level 11
- Jul 3, 2024
- 550
- Dec 12, 2016
- 1,926
Not just that new gaming engine languages and even rust to some extent
