It detects itself(Worm.Deleter.a) because of local ignore={disk=true,rom=true}
Wtf this can't be right....
Also it doesn't detect fs.delete("*") as a virus?
1
BLAST AntiMalware Suite - 'Yet another' string.find antivirus
Started by minebuild02, Aug 02 2016 04:16 PM
lua
24 replies to this topic
#21
Posted 26 August 2016 - 09:02 PM
#23
Posted 28 August 2016 - 09:19 PM
You could scan the file for the HTTP API. For example, running the code from mysite.com/myfile where myfile is a virus.
#24
Posted 28 August 2016 - 09:25 PM
Somewhere in the past I saw a program that encrypts your code to make it hidden. A virus maker could use it to avoid string.find warnings. You should start working on a sandbox mode that replaces most of unsafe functions to function()end and makes a log with the performed actions
#25
Posted 05 September 2016 - 01:29 PM
Luca_S, on 26 August 2016 - 09:02 PM, said:
It detects itself(Worm.Deleter.a) because of local ignore={disk=true,rom=true}
Wtf this can't be right....
Also it doesn't detect fs.delete("*") as a virus?
Wtf this can't be right....
Also it doesn't detect fs.delete("*") as a virus?
manu_03, on 28 August 2016 - 09:19 PM, said:
You could scan the file for the HTTP API. For example, running the code from mysite.com/myfile where myfile is a virus.
manu_03, on 28 August 2016 - 09:25 PM, said:
Somewhere in the past I saw a program that encrypts your code to make it hidden. A virus maker could use it to avoid string.find warnings. You should start working on a sandbox mode that replaces most of unsafe functions to function()end and makes a log with the performed actions
1 user(s) are reading this topic
0 members, 1 guests, 0 anonymous users