Stack Overflow
Stack Overflow

Questions tagged [malware-detection]

Malware detection relates to any form of discovering whether or not a file contains undesired source instructions, that would perform malicious instructions, ranging from stealing information, directing users to unrequested actions, or even damaging the hardware. Detection attemps to discover malware while not allowing it to be executed, for this reason, most detections search for "footprints", i.e. sequencial binary code in its instructions.

233 questions
0
votes
1 answer

PHP code being reported as malware

I have been working on a website on a localhost and have just tried to upload it to a free webserver so I can get some testers, for some reason my code is being reported as malware and is being blocked by my antivirus, this means I can't see…
user5134772
0
votes
0 answers

internal fake links shows in google search results

I recently had a strange problem on my site. This is a problem with urls that have not any relation my content (see screenshot with fake links in google search results). Fortunately these links are no external spam links. So I decided to do the…
Civil Center
  • 1
  • 1
0
votes
2 answers

How can I use pe.entry_point to write YARA rules?

I wrote condition in YARA rule like this pe.entry_point == {12 A5 26} but I am getting unexpected _HEX_STRING_ error. What is the problem? How can I get address of entry_point? What is the type of output of pe.entry_point?
Pasazade
  • 1
  • 2
0
votes
1 answer

Website got redirecting

My website is getting redirected to some other URls that contain different Ads. It is a Wordpress website. The Website is scanned using securi Scanner and said Domain blacklisted by Norton Safe Web Domain blacklisted By Yandex (via…
Tony Jose
  • 133
  • 1
  • 1
  • 9
0
votes
1 answer

Different Representation of Full file access paths by malware

I am currently using Dynamic analysis for malware detection. I have list of all the files accessed by malware and benign executable. My aim is to build classifiers on the information extracted through the analysis reports. As of now i am using the…
Pranjul Ahuja
  • 26
  • 1
  • 3
0
votes
1 answer

how to extract and remove the header of a windows PE (portable executable) file?

I am working on an assignment in packed malware analysis, in which I have to extract i.e. remove the header file of a PE malware and then I have to fragment the data. But I am unable to find out how to read and extract the header of a PE file.
Mridul Sachan
  • 93
  • 1
  • 2
  • 11
0
votes
0 answers

Detecting vulnerabilities in webpages using java

I am developing a web application in java which uses web crawler to get content from web pages and perform content filtration and also detection of vulnerabilities in those web pages. But i am not able to get any content related to detection of…
Robin
  • 1
0
votes
1 answer

Joomla Access Log - Interpreting the log file and site hack

One of my Joomla site was hacked. I have removed all the malicious code from the file. But still my access.log have some entries like this: 66.249.64.200 - - [01/Mar/2017:00:55:45 +0530] "GET…
Joshi
  • 2,730
  • 5
  • 36
  • 62
0
votes
2 answers

10wp.org/jquery.js how to remove the malware

One of my company's client's website is infected with a malware. In the source there is a that is printed randomly. I following this article and searching the code. But so far I could find where…
André Luiz
  • 6,642
  • 9
  • 55
  • 105
0
votes
2 answers

How would I write a malware detection software?

What are the resources I need to go through to fully understand how this works? I've looked up online but all I got are software solutions rather than how the software actually detects them. I want to be able to detect a malware that's in my…
Prashanth Ambati
  • 124
  • 9
0
votes
1 answer

How to translate assembly instructions using Java Parser?

I am doing work on the feature extraction of malware .I want to translate the assembly instructions, by discarding the operands and encoding each operator with a unique number (say instruction ID). I want output like this: Instruction sequence:…
Hamad
  • 1
  • 1
0
votes
1 answer

Website blocked by embedded malicious link

Im trying to publish some of the Threat Intelligence URL/Domains on my website (using simple PHP/HTML table) pulled from public repositories. While opening the webpage, some forward proxy devices are blocking the request as "Embedded malicious…
Karthik
  • 363
  • 2
  • 7
  • 20
0
votes
2 answers

Finding malicious script on my webserver with grep

Got a malicious script on my WordPress site, randomly appearing and disappearing in my source code as