Stack Overflow
Stack Overflow

Questions tagged [malware-detection]

Malware detection relates to any form of discovering whether or not a file contains undesired source instructions, that would perform malicious instructions, ranging from stealing information, directing users to unrequested actions, or even damaging the hardware. Detection attemps to discover malware while not allowing it to be executed, for this reason, most detections search for "footprints", i.e. sequencial binary code in its instructions.

233 questions
170
votes
8 answers

How to decompile an APK or DEX file on Android platform?

Is it possible to decompile an APK package or DEX file on Android platform? Are there any tools that can decompile an APK file?
user3151261
  • 1,947
  • 2
  • 13
  • 12
37
votes
8 answers

How to get rid of eval-base64_decode like PHP virus files?

My site (very large community website) was recently infected with a virus. Every index.php file was changed so that the opening php tag of these files it was changed to the following line:
fractalbit
  • 963
  • 2
  • 12
  • 17
21
votes
1 answer

How safe are extensions in Visual Studio code?

How safe are extensions in visual Studio code? Can extensions introduce malware? Is safe to install any extension?
raul isai monroy
  • 311
  • 2
  • 3
15
votes
2 answers

Linux Kernel Rootkit samples

I'm working on some new techniques for Linux Kernel Rootkit Detections as my thesis. I need some sample of rootkits to test my method and also do some machine learning tests. But not the old-dusty ones in packetstorm that could be found in computer…
Shayan
  • 548
  • 6
  • 24
8
votes
1 answer

IE9 SmartScreen Warning, Despite Following All Recommendations

We offer a Windows program downloadable as an InstallShield EXE from our website. When someone running IE9 attempts to download and run our software, they see the following message at the bottom of their screen: PROGRAMNAME.exe is not commonly…
Schof
  • 6,329
  • 5
  • 28
  • 38
8
votes
3 answers

Chrome says my website contains malware?

Chrome saying while I am accessing my site, after searching I cleaned my code from the site but chrome still showing then I removed all files from my site and just upload index.html (blank file) but warning is still showing.
PHP Ferrari
  • 15,754
  • 27
  • 83
  • 149
7
votes
2 answers

Is There A Way To Detect A Key Logging Software?

I might write a program to detect malicious (or non-malicious) software that is key logging (logging key strokes to gain information). What tactics would be used? Is there certain code to look for? Are there certain locations I should search? I…
Dorothy
  • 2,842
  • 10
  • 33
  • 46
7
votes
3 answers

Malware infected sites list(only URL)

I want malware infected sites list (only URL's) any pointers ? Found some but they don't have option to download the list. Some sites are: http://malc0de.com/database/ http://www.malwareblacklist.com/showMDL.php Copying each and every url from these…
Ankith
  • 277
  • 2
  • 4
  • 13
6
votes
3 answers

How does an Antivirus knows not to detect non malicious code?

Let's say I created a file compression library, and this library was used in 1000 (non malicious) programs. But now a malware developer has decided to create a malware and use my library to compress some files. Based on my little knowledge on how an…
user6088487
  • 189
  • 6
6
votes
3 answers

Hacked site - encrypted code

Couple days ago I gave noticed that almost all php files on my server are infected with some encrypted code and in almost every file is different. Here is the example from one of the files: http://pastebin.com/JtkNya5m Can anybody tell me what this…
Darko Sedlarevic
  • 63
  • 1
  • 4
5
votes
3 answers

Compiler with built-in AV = No virus development?

Is it possible to produce compilers that heuristically check for malware behaviour? If it is possible why has not it been implemented? Wouldn't that strongly help preventing the production of such viruses, I mean why wait to stop them once they are…
Carlos
  • 5,405
  • 21
  • 68
  • 114
5
votes
3 answers

Malicious PHP files detected by Host

I don't know if this is the right place to ask this question, if it isn't please let me know. I recently got a project to move a website from one host (don't know which) to a new one (hostgator). I did that, and within one day got a mail from…
Whip
  • 1,891
  • 22
  • 43
5
votes
1 answer

Finding a PEiD database

Where can I get the latest version of the PEiD database? I know that one version is available in github (https://raw.githubusercontent.com/guelfoweb/peframe/5beta/peframe/signatures/userdb.txt), but it is more than one year old and it has…
amfm791
  • 51
  • 1
  • 3
5
votes
2 answers

what is the base relocation table in the PE file format?

I was analyzing format of one executable file, I found Base relocation table in image_optional_header, what is this base relocation table?
santosh Awale
  • 51
  • 1
  • 3
5
votes
2 answers

How to detect and/or block browser extensions that mess up my website?

More and more of our users (I manage a french blogging platform) are complaining about bugs on our interface. In 90% of cases, the problem comes from an extension that is installed on the user's browser. Users often don't even know that they have…
Godefroy
  • 61
  • 4
1
2 3
15 16