Skip to main content

Notice

Please note that most of the software linked on this forum is likely to be safe to use. If you are unsure, feel free to ask in the relevant topics, or send a private message to an administrator or moderator. To help curb the problems of false positives, or in the event that you do find actual malware, you can contribute through the article linked here.
Topic: Detected As Malicious Program (Read 4637 times) previous topic - next topic
0 Members and 1 Guest are viewing this topic.

Detected As Malicious Program

Below some my analysis for Foobar2000.

Hybrid Analysis scan this as malicious program HERE

VirusTotal with 3/66 detection HERE

Is this FALSE POSITIVE, need clarification for file intergrity.

Website Link - https://www.foobar2000.org/
SHA-256 - 2fdd5465cf9afaed94a5d7dbdcb9252fb8cd1753b323283f6983ec75db20c250

Re: Detected As Malicious Program

Reply #1
Quote
Below some my analysis for Foobar2000.
which part is yours, though?
it looks like an automated scan by various AV software and nothing more on top of that.
a fan of AutoEq + Meier Crossfeed

Re: Detected As Malicious Program

Reply #2
False positive.

Those tools are fairly useless at best.


Re: Detected As Malicious Program

Reply #4
Those tools are fairly useless at best.
Well, at least that analysis is funny:

Quote
Contains ability to measure performance
details: rdtsc

Contains ability to query CPU information
details: cpuid

1/64 reputation engines marked "http://www.foobar2000.org/equalizer" as malicious (1% detection rate)

Found potential IP address in binary/memory
details: "1.0.0.7"

etc.