hani-dev

inetget alternative !!

2 posts in this topic

#1 ·  Posted (edited)

hello there im trying to write a script to download .exe or .zip 

#include <InetConstants.au3>


InetGet("https://download.sysinternals.com/files/ProcessExplorer.zip" , @AppDataDir & "\ProcessExplorer.zip" , 0 )

ShellExecute(@AppDataDir & "\ProcessExplorer.zip" )

shellexecute and inetget is detected by antivirus as mlware i dont know why !! :( is there any alternative ?

Edited by hani-dev

Share this post


Link to post
Share on other sites



#2 ·  Posted

You could report your file as false positive to the AV companies that are detecting your file as false positive. But...

I don't think the antivirus are wrong. Although I really don't think you want to make a malware, the antivirus are claiming that your file is a downloader. And so it is. It would happen even if you were using C or any other language to produce an executable that just downloads a file. (VirusTotal)

Note that the AVs detected your file through their heuristic system. They usually do it by running your file on a sandbox (or a virtual machine) and analyzing what it's doing (read more on Wikipedia). It's easy to see why your file got detected: it tries to silently download and run a file.

Create a GUI with a progress bar and never hide what your script is doing from the user. Add a message box at the end, telling that the download is complete. The more user interactions you ask for, the less chance you'll have of being detected as malware. As it will create a GUI and won't be silent, it's easier not to be considered malware by the AV heuristic.


My stuff

Spoiler

My UDFs  _AuThread multithreading emulation for AutoIt · _ExtInputBox an inputbox with multiple inputs and more features · forceUTF8 fix strings encoding without knowing its original charset · JSONgen JSON generator · _TCPServer UDF multi-client and multi-task (run on background) event-based TCP server easy to do · _TCPClient_UDF multi-server and multi-task (runs on background) event-based TCP client easy to do · ParseURL and ParseStr functions ported from PHP · _CmdLine UDF easily parse command line parameters, keys or flags · AutoPHP Create documents (bills, incomes) from HTML by sending variables/arrays from AutoIt to PHP · (Un)Serialize Convert arrays and data into a storable string (PHP compatible) · RTTL Plays and exports to MP3 Nokia-format monophonic ringtones (for very old cellphones) · I18n library Simple and easy to use localization library · Scripting.Dictionary OOP and OOP-like approach · Buffer/stack limit arrays to N items by removing the last one once the limit is reached · NGBioAPI UDF to work with Nitgen fingerprint readers · Serial/Licensing system require license key based on unique machine ID from your users · HTTP a simple WinHTTP library that allows GET, POST and file uploads · Thread true AutoIt threads (under-dev) Classes _WKHtmlToX uses wkhtmlto* to convert HTML files and webpages into PDF or images (jpg, bmp, gif, png...) Snippets _Word_DocFindReplaceByLongText replace strings using Word UDF with strings longer than 255 characters (MSWord limit) rangeparser parser for printing-like pages interval (e.g.: "1,2,3-5") EnvParser parse strings/paths with environment variables and get full path Random stuff Super Mario beep sound your ears will hurt

 

Share this post


Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!


Register a new account

Sign in

Already have an account? Sign in here.


Sign In Now