Have you ever downloaded a file which is kinda suspicious?
Well you can do these things so you'll know if its something unsafe
- Common Sense -
Look at the file!
Look at the icon!
Look at the assemblies of it!
Does it seem suspicious?
if yes then continue reading
- Hex it -
Use a hex editor and load it up there
Use the search strings then try to search for these Common words:
*RC4
*Gmail
*FTP
If you find anything in it
then you are probably hexing a stealer or so
Thats it guys
its so easy to check a file out
better sandbox it first if you like
This is just a very very simple tutorial for beginners
but remember, some other files are strongly encrypted...so i suggest checking
the strings in novirusthanks.org
good luck
No comments:
Post a Comment