Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

False detections by antivirus software #5

Open
resilar opened this issue Jan 10, 2019 · 0 comments
Open

False detections by antivirus software #5

resilar opened this issue Jan 10, 2019 · 0 comments
Labels
enhancement New feature or request

Comments

@resilar
Copy link
Owner

resilar commented Jan 10, 2019

In VirusTotal, 6/67 engines falsely detect hotfinger.exe as malicious. This is bad because the 6 engines include popular antivirus software such as Avast, AVG, Cylance & Symantec. Users do not like this, so do something about it. Possible solutions:

  1. Carefully modify HotFinger to resolve false positives one by one. However, this is non-trivial because 4 out of the 6 false detections are based on heuristics (that is, cannot be addressed by changing few bytes in the hotfinger.exe executable).

  2. Do not modify HotFinger itself, but use existing packer/protector to make hotfinger.exe undetectable. Writing a custom "dropper" is also an option.
@resilar resilar added the enhancement New feature or request label Jan 10, 2019
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
enhancement New feature or request
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@resilar