Deprecated WiseVector Free AI Driven Security

WiseVector

WiseVector

From WiseVector
Verified
Top Poster
Developer
Well-known
Dec 14, 2018
643
porkpiehat said:
yeah, that's what used to happen..... but now the PDF opens, and I get the malware warning... very odd.

ok, that is odd... I was testing with a saved zip file, but if I download a fresh PDF(zip) file, it is stopped on execution... would there be any reason for that?

so, if I extract the file from the downloads folder, it is stopped on extraction.... but if I extract the file from a different folder, the PDF file is opened, and WVSX issues the warning... :confused:
Click to expand...
Hi,
With the realtime protection enabled, WVSX blocked the sample immediately when double click on it.
Capture21.PNG
Do you mean that WVSX didn't block the sample when you ran it?
 
Last edited:
  • Like
Reactions: roger_m, Protomartyr, harlan4096 and 2 others
porkpiehat

porkpiehat

Level 6
Verified
Well-known
May 30, 2015
277
WiseVector said:
Hi,
With the realtime protection enabled, WVSX blocked the sample immediately when double click on it.
View attachment 252953
Do you mean that WVSX didn't block the sample when you ran it?
Click to expand...
when the zip is downloaded, and you extract it, it is blocked... but if I move the zip to another folder location called 'security tests', and extract it, the PDF file opens, but you still get the 'malware blocked' popup... so I can only assume that the dropper has been taken care of, as I cannot find an offending TMP file.
Screenshot (1).png
 
Last edited:
  • Like
Reactions: WiseVector, roger_m, Protomartyr and 2 others
WiseVector

WiseVector

From WiseVector
Verified
Top Poster
Developer
Well-known
Dec 14, 2018
643
porkpiehat said:
when the zip is downloaded, and you extract it, it is blocked... but if I move the zip to another folder location called 'security tests', and extract it, the PDF file opens, but you still get the 'malware blocked' popup... so I can only assume that the dropper has been taken care of, as I cannot find an offending TMP file.
Click to expand...
Thanks for your reply.
Can you please tell me what's your default PDF reader? We will try to reproduce what you have posted.
 
  • Like
Reactions: roger_m, Gandalf_The_Grey, Protomartyr and 2 others
WiseVector

WiseVector

From WiseVector
Verified
Top Poster
Developer
Well-known
Dec 14, 2018
643
pxxb1 said:
Just for your information.
I just downloaded Revo Uninstaller and WVSX flagged it as malware.
Click to expand...
Hi,
Thanks for your feedback.
Can you please tell me it was flagged as malware by our static detection or behavior detection?
Please be noted that without exiting WVSX, there will be an malware alert whenever a program is trying to uninstall WVSX or modify the files in our installation folder.
 
  • Like
  • Thanks
Reactions: roger_m, [correlate], Protomartyr and 1 other person
P

pxxb1

Level 9
Verified
Well-known
Jan 17, 2018
436
WiseVector said:
Hi,
Thanks for your feedback.
Can you please tell me it was flagged as malware by our static detection or behavior detection?
Please be noted that without exiting WVSX, there will be an malware alert whenever a program is trying to uninstall WVSX or modify the files in our installation folder.
Click to expand...

It was flagged when download was complete as a trojan and i got the question to quarantin or exclude. I excluded and reported as false.
 
  • Like
Reactions: WiseVector, roger_m, Protomartyr and 2 others
M

Mops21

Level 34
Verified
Honorary Member
Content Creator
Oct 25, 2014
2,368
Hi @WiseVector

See on the screenshot Wisevector Homepage Microsoft Edge Bug 01 vom 16.01.2021 Part 1 in the circle that is so okay or not

Please check and fix it please

With best Regards
Mops21
 

Attachments

  • Wisevector Homepage Microsoft Edge Bug 01 vom 16.01.2021 Part 1.jpg
    Wisevector Homepage Microsoft Edge Bug 01 vom 16.01.2021 Part 1.jpg
    108.8 KB · Views: 215
  • Wisevector Homepage Microsoft Edge Bug 01 vom 16.01.2021 Part 2.jpg
    Wisevector Homepage Microsoft Edge Bug 01 vom 16.01.2021 Part 2.jpg
    84.7 KB · Views: 212
  • Like
Reactions: roger_m, Protomartyr and harlan4096
WiseVector

WiseVector

From WiseVector
Verified
Top Poster
Developer
Well-known
Dec 14, 2018
643
pxxb1 said:
It was flagged when download was complete as a trojan and i got the question to quarantin or exclude. I excluded and reported as false.
Click to expand...
Hi,
Can you please tell me what the Heuristic Analysis level you have set?
We have tested, our static detection didn't flag it as malware...
 
Last edited:
  • Like
Reactions: Protomartyr, porkpiehat, roger_m and 1 other person
P

pxxb1

Level 9
Verified
Well-known
Jan 17, 2018
436
WiseVector said:
Hi,
Can you please tell me what the Heuristic Analysis level you have set?
We have tested, our static detection didn't flag it as malware...
Click to expand...

Default level.
I dont know what happened or if i downloaded from their homesite or if it was the latest version but i got that reaction. Unfortunately i have erased that download so i can not be of more assistans.
 
  • Like
  • Thanks
Reactions: WiseVector, Moonhorse, roger_m and 2 others
M

Mops21

Level 34
Verified
Honorary Member
Content Creator
Oct 25, 2014
2,368
  • Like
Reactions: WiseVector and roger_m
cruelsister

cruelsister

Level 42
Verified
Honorary Member
Top Poster
Content Creator
Well-known
Apr 13, 2013
3,141
Just had some time to check out WVSX ver 2.72, specifically as it pertains to the auto restore of encrypted files functionality.

Although not the easiest of tasks as WV will stop almost all encryptors before they even can reach the honeypot files, I did modify a Pony that was able to actually encrypt files that I was monitoring. Once this (the encryption) occurred two popups appeared- the first was the usual malware detected alert- the other popup was a Threat Remediation alert listing all the stuff that was encrypted (with the notation Recovery Needed) along with a choice to Apply (Rollback).

The restoration took a few seconds, but all went rather swimmingly with all the files that were acted upon by Pony were once again happy and healthy and back where they belonged along with the encrypted versions being trashed.

Nice work, WV.

m
 
  • Like
  • Applause
  • +Reputation
Reactions: HarborFront, SeriousHoax, Sunshine-boy and 23 others
paulderdash

paulderdash

Level 6
Verified
Well-known
Apr 28, 2015
271
cruelsister said:
Just had some time to check out WVSX ver 2.72, specifically as it pertains to the auto restore of encrypted files functionality.

Although not the easiest of tasks as WV will stop almost all encryptors before they even can reach the honeypot files, I did modify a Pony that was able to actually encrypt files that I was monitoring. Once this (the encryption) occurred two popups appeared- the first was the usual malware detected alert- the other popup was a Threat Remediation alert listing all the stuff that was encrypted (with the notation Recovery Needed) along with a choice to Apply (Rollback).

The restoration took a few seconds, but all went rather swimmingly with all the files that were acted upon by Pony were once again happy and healthy and back where they belonged along with the encrypted versions being trashed.

Nice work, WV.

m
Click to expand...
Endorsement from Cruella! 🐈

WVSX continues to impress.
 
  • Like
  • HaHa
  • Applause
Reactions: Dhruv2193, blueblackwow65, roger_m and 8 others

Similar threads

Ink
    • Like
    • HaHa
    • Wow
Technology NSA is starting an artificial intelligence security center
Replies
4
Views
679
Technology News
TairikuOkami
TairikuOkami
Ink
A.I. News Biden's AI Directive - US Government on Artificial Intelligence Safety and Security
Replies
0
Views
338
Technology News
Ink
Ink
silversurfer
    • Like
    • +Reputation
    • Applause
A.I. News EU votes to ban riskiest forms of AI and impose restrictions on others
Replies
7
Views
558
Technology News
vtqhtr413
vtqhtr413

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

Quick Navigation

Forum Rules Warning System Welcome Guide Two-factor Authentication

User Menu

Login

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top