- Jan 4, 2016
- 1,022
Probably I started chrome when VS hadn't still loaded properly, and it wasn't able to get the connection at that time
VoodooShield discussion
- Thread starter Evjl's Rain
- Start date
- Status
- Jan 4, 2016
- 1,022
What happens if a user tries to run a malicious file (flagged on VirusTotal) when VoodooShield is in install mode? Will it execute or be blocked? I was thinking at the case when a beginner is thinking to install a program, but it was instead malware
- Mar 1, 2014
- 1,708
I think it would be allowed. From what I remember, its name is "Disable/Training Mode".
- Jan 4, 2016
- 1,022
A guy just told me that VoodooShield doesn't block malicious files opened directly by a WinRar archive for the parent process feature. I don't believe this is true. Can you confirm it?
- Aug 2, 2015
- 4,286
Just disable, auto allow for that and files in AppData location
- Jan 4, 2016
- 1,022
Ok, let's say we have an executable file (malicious) which has already been uploaded on VirusTotal but still has a detection of 0/57 because it's really new. VoodooShield would then rely only on Artificial Intelligence?
Case 2: we have a javascript file (Artificial intelligence not supported.) it has been uploaded on VirusTotal and has a detection of 0/57. It would be able to execute successfully and also the payload would, if parent process is enabled?
Case 2: we have a javascript file (Artificial intelligence not supported.) it has been uploaded on VirusTotal and has a detection of 0/57. It would be able to execute successfully and also the payload would, if parent process is enabled?
- Jul 3, 2015
- 8,153
are you asking about autopilot mode?
because in the other modes, you might get a recommendation that it is clean, but the final decision will be yours.
- Jan 4, 2016
- 1,022
- Feb 7, 2014
- 1,540
VirusTotal is not all that Voodoo shield look to for results, next I was following some people who have thrown everything they can thinks about at Voodoo shield in automatic mode haven't fail as yet.
- Jul 3, 2015
- 8,153
with the exe file, yes, autopilot will let it execute, if both VS and Ai judge it as clean.
with the java script file, it depends. If you have a web app running, then exploit protection kicks in, and windows script host will not run. If you have no web app running, and VS says its clean, then it will run.
- Jan 4, 2016
- 1,022
Let's say one downlaods ransomware from his email (a zip file containing a js file). The js file has already been scanned and has a detection of 0/57 on VirusTotal, which drops an EXE payload (undetected, but already scanned this one also). After extraction, if we execute the sample, using VoodooShield free on autopilot mode, what would happen? The js file should be allowed, because it's not detected nor unknown on VirusTotal. And the EXE file? Blocked or allowed?
- Sep 22, 2014
- 1,767
I think it will be block like in the picture.
Here is a script block:
Pictures taken from this test - Click
You can check other test by VoodooShield in the Malware Hub:
Malware Vault (Samples)
- Jan 4, 2016
- 1,022
Ok, this is an unknown scprit, which hasn't been uploaded on VirusTotal.com yet, so it's blocked. But let's say the script has already been scanned with VirusTotal.com and has a detection of 0/57.. Then, it should be allowed ro run in autopilot mode
- Sep 22, 2014
- 1,767
if, if, if,.....that is a lot of ififififif...
If girl have a....
That file should be find (somewhere) and tested, then we will know, everything else is fairytale.
If girl have a....
That file should be find (somewhere) and tested, then we will know, everything else is fairytale.
- Jan 4, 2016
- 1,022
It's simple, you create a new js file and scan it with VirusTotal first. 0/57 detection. Then, you run it under VoodooShield and see what happens. The problem is that it's hard to find available for downlaod such a new file, if you don't code it by yourself
- Sep 22, 2014
- 1,767
- Apr 25, 2013
- 5,356
VoodooShield 3.53 Beta
http://www.voodooshield.com/Download/beta3/InstallVoodooShield353.exe
http://www.voodooshield.com/Download/beta3/InstallVoodooShield353.exe
- Aug 2, 2015
- 4,286
Please note the Version may not change from 3.52
it is updated, its something that Dan will address
later most likely seeing its not too serious.
I am still showing 3.52 after installing too
If he has already addressed this please disregard.
it is updated, its something that Dan will address
later most likely seeing its not too serious.
I am still showing 3.52 after installing too
If he has already addressed this please disregard.
- Apr 25, 2013
- 5,356
VoodooShield 3.53
http://voodooshield.com/download/versions/InstallVoodooShield.exe
http://voodooshield.com/download/versions/InstallVoodooShield.exe
- Status
Similar threads
