Self-Made Fortran Malware Analysis

[anirbandutta01]

Why do all the malware analysis topics become a platform for promoting Comodo through their fans?...
There's plenty of software out there, some of which has protected...

I know sir it's malware analysis topic, I just normally asked ( normal enquiry )

 

[anirbandutta01]

Again no verified badge. I don't know what's my fault? Sometimes it's showing verified sometimes not It was just normal enquiry not promoting Comodo. @Jack I'm sorry if I'm worng.

 

[Shadowra]

Again no verified badge. I don't know what's my fault? Sometimes it's showing verified sometimes not It was just normal enquiry not promoting Comodo. @Jack I'm sorry if I'm worng.

No, don't worry
It's just that I too often see Comodo fans polluting topics with their favorite antivirus

 

[anirbandutta01]

No, don't worry
It's just that I too often see Comodo fans polluting topics with their favorite antivirus

Okay but I didn't see verified badge just after previous comments and your previous reply so I think it's my fault.

 

[Nikola Milanovic]

Okay but I didn't see verified badge just after previous comments and your previous reply so I think it's my fault.

For home user its 29.99$ but you also have Comodo free products Comodo Internet Security Premium 2025

 

[Nikola Milanovic]

Why do all the malware analysis topics become a platform for promoting Comodo through their fans?...
There's plenty of software out there, some of which has protected...

LOL well because Xcitium is verry good at analyzing unknown apps

 

[anirbandutta01]

Okay I think it's quite debatable topic that which antivirus will performs well at analyzing unknown apps. I don't want to mention any name but all we know which antivirus softwares really performs very well.

 

[Game Of Thrones]

Okay I think it's quite debatable topic that which antivirus will performs well at analyzing unknown apps. I don't want to mention any name but all we know which antivirus softwares really performs very well.

yeah, the one which some say its name some not, it's like the you know who in Harry Potter world. The K one... much less damage to the system and controlled the situation.

 

[Kongo]

Changed hash and while most of the AV's miss it at least with static detection, Firefox (Google Safe Browsing) got me protected

 

[Kongo]

Wonder if VoodoShield would block it

 

[Zartarra]

Cyberlock blocks the file:

Anyone tested it with Trend Micro (hyper sensitive) or Emsisoft?

 

[realnighthax]

Why did DeepInstinct not detect the modified file? It seems to me like their "AI detection" is just matching signatures and no analysis is taking place.

 

[Kongo]

Why did DeepInstinct not detect the modified file? It seems to me like their "AI detection" is just matching signatures and no analysis is taking place.

Detected now.

 

[Xciting]

Detected now.

deep instinct at max settings detects everything either way lol

 

[Xciting]

hybrid analysis Is my favorite since its interactive real time, and any.run if you get accepted to have an account

 

[silversurfer]

For everyone, the purpose of this forum section is not sharing detection by Anti-Virus X nor Y etc. Just read carefully the rules: By Staff - Malware Analysis Forum Rules

 

[Dreams&Visions]

Also K7 antivirus detected the tweak version with same trojan (0005bee901) but sadly not available on VT: VirusTotal

I'm quite surprised it does not detect it by #, but rather generic. They really put work in their detections, very glad to see!

 

[Captain Awesome]

I'm quite surprised it does not detect it by #, but rather generic. They really put work in their detections, very glad to see!

They did deep analysis via my favourite HxD Editor i think (K7GW)

 

[HydraDragonAntivirus]

VirusTotal

VirusTotal

www.virustotal.com

https://bazaar.abuse.ch/browse/tag/472b3c/

This malware uses Javascript and it popup now it's OUR pc message. It changes your admin rights (probably from user settings instead of my technique) so you can't run admin programs anymore. Part of NovaSentiel malware family. Currently it's no longer fully undetectable malware because it has 3 detections right now. I have the malware sample right now. It literally tries to disable your antivirus.

 

[bazang]

This malware uses Javascript and it popup now it's OUR pc message. It changes your admin rights (probably from user settings instead of my technique) so you can't run admin programs anymore. Part of NovaSentiel malware family. Currently it's no longer fully undetectable malware because it has 3 detections right now. I have the malware sample right now. It literally tries to disable your antivirus.

FUD as of current time stamp.

• Avira/F-Secure
• Microsoft