search

Endermanch / MalwareDatabase

One of a few malware collections on the GitHub.
https://malwarewatch.org
2.33k stars 531 forks source link

Malware like Spark doesn't work #206

Open Emo-BS opened 3 years ago

Emo-BS commented 3 years ago

i tried to run this fmv malware on my w11 vm but it didn't work, why?

Deveroonie commented 2 years ago

i tried to run this fmv malware on my w11 vm but it didn't work, why?

i think most of the viruses on this site are mainly aimed on w10 so its quite likely that it won't work on w11.

w10 things will run on w11

iam-py-test commented 2 years ago

Try disabling Windows Defender and Microsoft Smartscreen on the VM Microsoft detects a lot of the malware in this repo, so it is possible

Emo-BS commented 2 years ago

already tried with w7, 10 , 11 all of them got the same erorr before running Spark.exe

iam-py-test commented 2 years ago

already tried with w7, 10 , 11 all of them got the same erorr before running Spark.exe

Can you take a screenshot of the error and upload it to GitHub?

Emo-BS commented 2 years ago

unknown

Emo-BS commented 2 years ago

i've installed the .NET language if u asked me

iam-py-test commented 2 years ago

Let me test on my VM. Maybe it’s a sample-specific issue Which malware sample are you running? I don't see a spark.zip file

Emo-BS commented 2 years ago

The Chris@Spark.exe one its the Spark (1).zip behind the erorr message but winrar icon doesn't appear on the .zip file :/

iam-py-test commented 2 years ago

I can reproduce the issue. The malware does not make any (noticeable) changes and does not persist in memory It creates no start-up item (that I saw) and made no changes to the file system or registry (that I saw - the only changes made to the system seemed just to be Microsoft doing what Microsoft does).

Emo-BS commented 2 years ago

So...what is that supposed to mean actually? if it's just broken and you need to send me the actual trojan by email there it is : xpedia445@gmail.com (it's not my personal email but owns it)

iam-py-test commented 2 years ago

So...what is that supposed to mean actually? if it's just broken and you need to send me the actual trojan by email there it is : xpedia445@gmail.com (it's not my personal email but owns it)

Not sure if you are talking to me or @Endermanch I don't have the actual trojan, so can't help

azlan-syed commented 2 years ago

some malware sample's are not working i don't know why but they are not working

iam-py-test commented 2 years ago

some malware sample's are not working i don't know why but they are not working

Some of the malware (i.e. Cookie Clicker & Noescape) requires you to install extra software to run it. Also be sure to update your Virtual Machine so it's running the latest Windows - some might not work on older Windows versions Which ones are you trying?

azlan-syed commented 2 years ago

see the list

On Tue, 14 Dec 2021 at 21:38, iam-py-test @.***> wrote:

some malware sample's are not working i don't know why but they are not working

Some of the malware (i.e. Cookie Clicker & Noescape) requires you to install extra software to run it. Also be sure to update your VM so it's running the latest Windows - some might not work on older Windows versions Which ones are you trying?

— You are receiving this because you commented. Reply to this email directly, view it on GitHub https://github.com/Endermanch/MalwareDatabase/issues/206#issuecomment-993696132, or unsubscribe https://github.com/notifications/unsubscribe-auth/AV7DJIFIIRRKHBSP5UHTRRDUQ5TWHANCNFSM5DSXCCAA .

azlan-syed commented 2 years ago

some malware sample's are not working i don't know why but they are not working

Some of the malware (i.e. Cookie Clicker & Noescape) requires you to install extra software to run it. Also be sure to update your Virtual Machine so it's running the latest Windows - some might not work on older Windows versions Which ones are you trying?

i raised an issue you can see that in the issues page these malware sample's are not working well thanks in advance

iam-py-test commented 2 years ago

i raised an issue you can see that in the issues page these malware sample's are not working well thanks in advance

Sorry, I didn't see https://github.com/Endermanch/MalwareDatabase/issues/229. Your going to have to ask @Endermanch - I just saw this issue and decided to comment, I have no access and can't really help

azlan-syed commented 2 years ago

i raised an issue you can see that in the issues page these malware sample's are not working well thanks in advance

Sorry, I didn't see #229. Your going to have to ask @Endermanch - I just saw this issue and decided to comment, I have no access and can't really help

ok thanks

azlan-syed commented 2 years ago

i tried to run this fmv malware on my w11 vm but it didn't work, why?

bro try windows 10 it will be fine

pankoza2-pl commented 2 years ago

Chris@Spark.exe needs to be renamed to "Spark.exe" (without quotes) to work due to way it's coded that relies on filename to be Spark.exe

iam-py-test commented 2 years ago

Chris@Spark.exe needs to be renamed to "Spark.exe" (without quotes) to work due to way it's coded that relies on filename to be Spark.exe

Thanks. Now it works on a Windows 10 VM

azlan-syed commented 2 years ago

Chris@Spark.exe needs to be renamed to "Spark.exe" (without quotes) to work due to way it's coded that relies on filename to be Spark.exe

Thanks a lot