Skip to main content
Topic: Detected As Malicious Program (Read 427 times) previous topic - next topic
0 Members and 1 Guest are viewing this topic.

Detected As Malicious Program

Below some my analysis for Foobar2000.

Hybrid Analysis scan this as malicious program HERE

VirusTotal with 3/66 detection HERE

Is this FALSE POSITIVE, need clarification for file intergrity.

Website Link - https://www.foobar2000.org/
SHA-256 - 2fdd5465cf9afaed94a5d7dbdcb9252fb8cd1753b323283f6983ec75db20c250

Re: Detected As Malicious Program

Reply #1
Quote
Below some my analysis for Foobar2000.
which part is yours, though?
it looks like an automated scan by various AV software and nothing more on top of that.

Re: Detected As Malicious Program

Reply #2
False positive.

Those tools are fairly useless at best.


Re: Detected As Malicious Program

Reply #4
Those tools are fairly useless at best.
Well, at least that analysis is funny:

Quote
Contains ability to measure performance
details: rdtsc

Contains ability to query CPU information
details: cpuid

1/64 reputation engines marked "http://www.foobar2000.org/equalizer" as malicious (1% detection rate)

Found potential IP address in binary/memory
details: "1.0.0.7"

etc.


 

Re: Detected As Malicious Program

Reply #6
Only if you assume they'd catch the real thing.

Yeah, I take it that there is some information in those 63 not raising the flag. They aren't all that bad?
Memento: this is Hydrogenaudio. Do not assume good faith.

 
SimplePortal 1.0.0 RC1 © 2008-2018