Malware detection relates to any form of discovering whether or not a file contains undesired source instructions, that would perform malicious instructions, ranging from stealing information, directing users to unrequested actions, or even damaging the hardware. Detection attemps to discover malware while not allowing it to be executed, for this reason, most detections search for "footprints", i.e. sequencial binary code in its instructions.
Questions tagged [malware-detection]
233 questions
4
votes
0 answers
As a web-master how should I deal with Malware browser plugins?
I have client-side javascript error logging.
It has revealed some of my pages are affected by malware installed in users' browsers, potentially impacting user experience / sales.
Example malware causing javascript errors:
eshopcomp
Yontoo
Example…
Myster
- 17,704
- 13
- 64
- 93
4
votes
1 answer
Google safe browsing API: unable to download list
I am using Google safe browsing API V3 to check if accessed URLs are safe or not. But it always returns 0.
Below is my code:
function googleDownloader($url)
{
$ch = curl_init();
curl_setopt($ch, CURLOPT_URL, $url);
curl_setopt($ch,…
user3702906
- 81
- 7
4
votes
2 answers
google safe browsing api url encoding (canonicalization)
In my application I am checking user-entered urls for malware by sending them to google.
To test getting a "malware found" reaction I used the url http://malware.testing.google.test/testing/malware
To my surprise this url was not marked as…
Sjors Miltenburg
- 2,540
- 4
- 33
- 60
4
votes
2 answers
Certificate to prove that our program is virus-free?
We are producing a software (C# / .NET 2.0), which is provided for download on a website.
Now this is a special program for only a few clients. As a consequence, many antivirus programs (Norton, Mc Afee, Avira, ... ) do not know our program and…
user872744
3
votes
3 answers
Url filtering
I'm looking for way to verify whether a site is categorized in any url filtering databases.
Does somebody know such database with free API?
S2201
- 1,339
- 3
- 18
- 35
3
votes
1 answer
Counter of a hexdump binary file
I am trying to produce a bigram of hexdump of a malware file which will help me to relate with the different malware files based on bigram, I am trying to use counter, zip, and slice to get the result but instead getting an error. I would be glad if…
Shubham Kalsi
- 33
- 4
3
votes
2 answers
Get my own hostname in .net FTP Server implementation
I am developing an app for malware analysis. It tracks all ftp request of a virus. So i am implementing my own ftp server and i have a dns server in my own pc redirecting all hosts to 127.0.0.1.
The problem is that i want to know the host name of…
aperezfals
- 1,341
- 1
- 10
- 26
3
votes
0 answers
Google's Safe Browsing malware flag and Bit.ly custom domains
I'm trying to better understand how to implement a custom domain with bit.ly without getting flagged by Google's Safe Browsing Site Status.
As I understand it, you can get flagged by Google if you have a link on your site to another site that has…
Zach B
- 534
- 7
- 25
3
votes
3 answers
Detect malicious URL destination?
Is there an online service that can tell me if the file at a given URL is malicious?
I'm publishing URLs in my website, and would like to warn users which URLs could contain malware. I'd like to request a report with an HTTP request…
cronocr
- 144
- 1
- 5
3
votes
1 answer
Using Cuckoo sandbox platform for dynamically analyzing multiple file samples
I'm trying to run more than one sample at the same time in a single guest VM, for efficiency reasons, something that will be even more efficient than the distributed cuckoo solution, or using a few guest VMs.
For example, to submit a few URLs, so…
Michael
- 796
- 11
- 27
3
votes
1 answer
I have been hacked, now I have a weird PHP file. What is it doing?
So I have been hacked a while ago and now I have a weird PHP file in my file manager. This is the content of it:
Dylan H
- 43
- 6
3
votes
1 answer
Detecting malware-added advertisements on my site
I recently made a kind of "Public Service Announcement" on my website telling people that there is only one advertisement on the site and it is neatly placed into the site's design.
I did this because someone reported the site as "not working", and…
Niet the Dark Absol
- 320,036
- 81
- 464
- 592
3
votes
6 answers
What is this file in .htaccess?
I am realy wonder why in .htaccess has those code bellow, can tell me what is this code?
order allow, deny
allow from all
deny from 212.92.53.18
SopheakVirak
- 961
- 6
- 14
- 36
3
votes
3 answers
PHP Joomla Malware Hidden links remove
I have a site which automatically adding hidden links under contact us page and other 3 pages.
i removed all the Malware codes but it still renaming on that pages, i also checked in database but no sign can't find any signature.
this is the links…
suneth
- 53
- 2
- 6
3
votes
1 answer
Tracking down hacking/malware attempts
I currently have a .net web application on a cluster based system (Rackspace cloud). In web config I have set up the following machine key.
Rippo
- 22,117
- 14
- 78
- 117