antmar904 Posted November 17, 2020 Posted November 17, 2020 Hello. Not sure on how to go about this but I'm seeing a concerning executable on a couple of computers, I was able to grab a copy of the source code but my scripting/programming knowledge is not the best and wanted to ask for different ways to I can check to see if it can be malicious. I already looked through the source code and nothing caught my eye, I also ran it through a sandbox and found nothing. Any help is appreciated.
Nine Posted November 17, 2020 Posted November 17, 2020 I will need to dust off my crystal ball. Will be back eventually, do not hold your breath... “They did not know it was impossible, so they did it” ― Mark Twain Spoiler Block all input without UAC Save/Retrieve Images to/from Text Monitor Management (VCP commands) Tool to search in text (au3) files Date Range Picker Virtual Desktop Manager Sudoku Game 2020 Overlapped Named Pipe IPC HotString 2.0 - Hot keys with string x64 Bitwise Operations Multi-keyboards HotKeySet Recursive Array Display Fast and simple WCD IPC Multiple Folders Selector Printer Manager GIF Animation (cached) Debug Messages Monitor UDF Screen Scraping Round Corner GUI UDF Multi-Threading Made Easy Interface Object based on Tag
Developers Jos Posted November 17, 2020 Developers Posted November 17, 2020 58 minutes ago, antmar904 said: I was able to grab a copy of the source code So I can only assume you have a compiled AutoIt3 exe that you find suspicious and you illegally decompiled it and are now in violation with our forum rules. Which part of this assumption is wrong? Jos @All , please stay out of this thread for now. SciTE4AutoIt3 Full installer Download page - Beta files Read before posting How to post scriptsource Forum etiquette Forum Rules Live for the present, Dream of the future, Learn from the past.
antmar904 Posted November 17, 2020 Author Posted November 17, 2020 @Nine i didn't want to post the code incase it actually was malicious. @Jos I personally did not decompile, the source was provided to me for analysis so I wouldn't make that assumption.
Developers Jos Posted November 18, 2020 Developers Posted November 18, 2020 10 hours ago, antmar904 said: I personally did not decompile, the source was provided to me for analysis so I wouldn't make that assumption. This is reaal a vague answer as you state the source is provided and you still question it's intentions? Show it to me (PM) and I will have a check to see whether I can figure out it's intentions. Thread locked Jos SciTE4AutoIt3 Full installer Download page - Beta files Read before posting How to post scriptsource Forum etiquette Forum Rules Live for the present, Dream of the future, Learn from the past.
Recommended Posts