Stack Overflow
Stack Overflow

Questions tagged [malware-detection]

Malware detection relates to any form of discovering whether or not a file contains undesired source instructions, that would perform malicious instructions, ranging from stealing information, directing users to unrequested actions, or even damaging the hardware. Detection attemps to discover malware while not allowing it to be executed, for this reason, most detections search for "footprints", i.e. sequencial binary code in its instructions.

233 questions
0
votes
1 answer

How to scan files locally for a specific string?

I've got a website that's been hacked. We restored it, and everything seems to be fine. But google keeps saying that one of the pages on the site is still serving a malicious link. But they will not specifically say which page. So my question, is…
Kakenx
  • 1,315
  • 3
  • 18
  • 34
0
votes
1 answer

How to determine whether a file has passed anti-virus detection?

We have to develop a Java web service that is running on WebLogic Server 12.2.1 on a Windows Server 2008 R2 server. The web service allows clients to send files to it in BASE64 format, which the web service will then decode and then create actual…
user3573403
  • 1,780
  • 5
  • 38
  • 64
0
votes
2 answers

Cuckoo Error: TemplateDoesNotExist at /

I installed last Cuckoo version on my physical machine Ubuntu 15.10 and I configured cuckoo following official guide. I have problem with web gui: TemplateDoesNotExist at / and it tries to search dashboard template in…
bit
  • 427
  • 1
  • 6
  • 14
0
votes
2 answers

Open source or free spyware / malware detection?

I'm building a system to control where my company's ads are placed. Amongst our concerns are potentially malicious code on the target page. Is there any library / database / system that can detect this content and is either open source or free?…
downer
  • 954
  • 2
  • 13
  • 24
0
votes
3 answers

malware Js code removal from wordpress

i keep getting this malware code in my wordpress , even if i do a clean install of my wordpress a few hours later its back again :/ i cant remove it... i keep finding the code below in many of mine .js files ... any one could give me advice on how…
Bruno Alexandre
  • 1
  • 1
0
votes
0 answers

jQuery v2 showing as potentially suspicious

We have had an alert in Google webmaster tools saying there was a malware issue on our site, however it didn't provide any example urls and has since been reviewed and cleared. Trying to do some digging as to why this occurred using an online…
eh21
  • 51
  • 10
0
votes
1 answer

Injection fails in Cuckoo Sandbox

I have a problem when analysing .doc file. with cuckoo sandbox. Here is a link of the cuckoo log: https://img3.picload.org/image/pwarlpp/index.jpeg As you can see the QueueUserAPC injection fails, but I can't figure out why. Any ideas? Greetings
Helyx
  • 329
  • 1
  • 5
  • 17
0
votes
1 answer

Mystery Markup Generated on Wordpress Footer

I'm having a strange problem with a Wordpress site I built recently, wherein when users visit one of the website's pages via search engine (typically Google), a bit of strange markup is generated inside the footer element. That markup is an…
Daniel Bogre Udell
  • 67
  • 9
0
votes
1 answer

Extract API calls from an APK

How could i extract API calls/System calls sequence from APK? I have decompiled source code from APK now i want to know if there is a tool that can extract all system calls made by that app from source code.
Hasnain
  • 99
  • 1
  • 12
0
votes
3 answers

My site has been tagged as Malware by Chrome! What now?

I'm completing the development of a site I didn't build (I designed it, but another has built it so far) and recently when I visit the site in Chrome I get a "Malware Detected!" Warning box. The site is http://kenbrook.org/ It's for a summer camp,…
Joel Glovier
  • 7,469
  • 9
  • 51
  • 86
0
votes
2 answers

jQuery.min.php Malware on my site

Looking for some help from anyone who is familiar with jquery Malware. I have been infected with an Injected Script in my WordPress website and everytime I remove the Injected Code from my Header.php 24 Hours later it has injected a modified version…
Rob4236
  • 375
  • 1
  • 7
  • 12
0
votes
1 answer

Volatility plugin to extract config file from memory : Crashes after yara compile function

I am trying to write a Volatility plugin to extract configuration file used by a malware from memory dump. However, when I run this plugin (without 'sudo') without root privileges the plugin crashes at the line yara.compile. If I run this plugin…
aMa
  • 629
  • 3
  • 10
  • 19
0
votes
1 answer

Tool for analyse portable executable loaded into memory

There is a lot of tools designed to help analyzing portable executable files. For example PE Explorer. We can load .exe file into it and check things like number of sections, section alignment or virtual addresses of particular sections. Is there…
Adam
  • 2,254
  • 3
  • 24
  • 42
0
votes
1 answer

social.png upload viruses as images in php

I know for the fact that there is trojan or malware in php which represents itself as an image. And I also know that to filter out the file upload we use extensions such as .txt or .png. Is there a way to scan the files manually when they are being…
MMTDesigner
  • 172
  • 1
  • 14
0
votes
1 answer

How to group yara's results by file?

I'm trying to do some malware detection using yara http://plusvic.github.io/yara/ The problem is i would like to group the results by file the courrent commande line that I'm using is: $ yara -r rules.yar malware_folder
Jamil
  • 1
  • 4
1 2 3
15 16