Self-Made Fortran Malware Analysis
- Thread starter HydraDragonAntivirus
- Start date
- Status
Still amazed virus scope catched it
Got it enabled only in the container on my system but maybe if it gets better I could enable it globally
Not at first site but by manually
And maybe the behavior components , hips can prevent the infection itself
VirusScope is amazing at analyzing unknown apps in sandbox it uses Static Analysis and Dynamic Analysis to do that
MS Defender configured
But once I reset it to default in DefenderUI, it passes without reaction (which was to be expected).
But once I reset it to default in DefenderUI, it passes without reaction (which was to be expected).
Sorry I missed. @harlan4096 could you please reply again??@harlan4096 has already done so and mentioned
- Apr 28, 2015
- 9,397
- 1
- 84,815
- 8,389
I see You got no bootable systems, but in the case of Kaspersky, system was not destroyed up to that point, in fact I could reboot without issues, but all my custom settings in my local account were changed to default or removed, for example the taskbar icons pinned, the order of the icons in the desktop, the color theme of the session, things like that, but system was completely usable.
Last edited:
Shaka when walls fellLest Eset's dynamic analysis isn't sad alone, Sophos also totally lost this battle. While its screens show significant damage to the system.
View attachment 286842
View attachment 286843
Temba his arms wide
The emulation from the extension failed but pretty sure if you actually executed the sample the behavior components would have stopped it and probably the same with ksn , liveguard both failed but if you actually executed the sample it just might have stopped the infection using some behavior components
Above harlan showed that actually execution ofthe sample would cause behavior components to defend at least some damage and the same will happen with some other avs
(Edit Harlan below showed that it was actually the hips component that blocked some of the malicious activity)
Last edited:
- Apr 28, 2015
- 9,397
- 1
- 84,815
- 8,389
Hum actually the sample did not trigger any behavior component (although KOTIP service tagged it as malware in 1st execution), but probably Intrusion Prevention, putting it in Low Restricted group, minimized in part, the malicious activities, and avoided to completely destroy the system.
I don't think it was in the first execution in the opentip sandbox but changing the hash is probably enough to find out
It's easy to evade sophos anyway as they literally load services of sophos software into the sandbox of intelixLest Eset's dynamic analysis isn't sad alone, Sophos also totally lost this battle. While its screens show significant damage to the system.
View attachment 286842
View attachment 286843
Not just that new gaming engine languages and even rust to some extent
- Status
You may also like...
-
-
-
Emojis in PureRAT’s Code Point to AI-Generated Malware Campaign- Started by Brownie2019
- Replies: 11
-
Analysis of system protection against active online malware – July 2025- Started by Adrian Ścibor
- Replies: 165
