Yeah that makes sense your executable didn't do any harm itself by it's code so Virustotal couldn't detect it, even though it "technically" contains malware. Great video!
Heuristic analysis, patterns in how malware typically executes In this case it almost entirely is due to it clearly being a cryptolocker and trying to run through every file and modifying it, very very few non malicious programs do that immediately from execution in addition of doing nothing/little else, add in the unknown publisher, no signing and a few other things sprinkled for flavour and it more or less advertises itself as malicious
@TAK-YON_ thanks for the reply! That makes sense, more things to learn about. I'm glad there are cybersecurity experts who build software keeping our computer systems safe. It's definitely neat to learn a little about as an outsider.
i could write a better one in less then 5 minutes in c++ and it will pass almost 95% of cases, a crypter is useless if the malware you want to crypt isn't doing anything useful, as soon as you write real malware code it will alert the av engine in a second, there a lot more in malware than a crypter
@@valhalla_dev wtf does that even mean in this context "bro"? i have nothing with you, but 2 things are for sure: 1) for what i see, you're just a jr malware developer compared to me 2) i do touch more grass than you think
@@hatman-rc2vcyou’re showing up in random people’s comment sections to brag about how you could totally write better malware than them. That’s cringe as hell 😂
@@valhalla_dev first of all, i said i could write better malware then "YOU" in case you did not notice, second im not showing randomly in some people's comment, YOU are showing randomly in my FEED :)
I didnt have a choice to show up in your feed. Judging by how obnoxious this conversation was, if I had a choice I would not have shown up in your feed. You had a choice to comment on this video and be obnoxious, and you made that choice.
Yeah that makes sense your executable didn't do any harm itself by it's code so Virustotal couldn't detect it, even though it "technically" contains malware. Great video!
That shit would be eaten up by runtime.
Cool video! But, now I need to know how Windows Defender and browsers detect that this file is malware if not by using a signature... (:
Heuristic analysis, patterns in how malware typically executes
In this case it almost entirely is due to it clearly being a cryptolocker and trying to run through every file and modifying it, very very few non malicious programs do that immediately from execution in addition of doing nothing/little else, add in the unknown publisher, no signing and a few other things sprinkled for flavour and it more or less advertises itself as malicious
@TAK-YON_ thanks for the reply! That makes sense, more things to learn about. I'm glad there are cybersecurity experts who build software keeping our computer systems safe. It's definitely neat to learn a little about as an outsider.
Thanks for watching! HMU on Twitter:
twitter.com/valhalla_dev
Join the malware research Discord for free:
discord.gg/fngHNW9Bnd
do you have insta
i could write a better one in less then 5 minutes in c++ and it will pass almost 95% of cases, a crypter is useless if the malware you want to crypt isn't doing anything useful, as soon as you write real malware code it will alert the av engine in a second, there a lot more in malware than a crypter
Touch grass bro, it’s more fun
@@valhalla_dev wtf does that even mean in this context "bro"? i have nothing with you, but 2 things are for sure:
1) for what i see, you're just a jr malware developer compared to me
2) i do touch more grass than you think
@@hatman-rc2vcyou’re showing up in random people’s comment sections to brag about how you could totally write better malware than them. That’s cringe as hell 😂
@@valhalla_dev first of all, i said i could write better malware then "YOU" in case you did not notice, second im not showing randomly in some people's comment, YOU are showing randomly in my FEED :)
I didnt have a choice to show up in your feed. Judging by how obnoxious this conversation was, if I had a choice I would not have shown up in your feed.
You had a choice to comment on this video and be obnoxious, and you made that choice.