Open shainodev opened 1 year ago
It probably shouldn't be no.
how tho? cant antiviruses see it querying the path? or it containing the filepath
is it better to check the path with a hardcoded xorstr-d string or should i get every folder in %appdata% and hash it and then compare it to a hashed exodus
They can detect it but it doesn't matter compared to all the other things the downloader does, and you can also use some less intrusive ways of checking files, like how I do with some files it in the miner.
They can detect it but it doesn't matter compared to all the other things the downloader does, and you can also use some less intrusive ways of checking files, like how I do with some files it in the miner.
is ShellExecute detected? and also should i then put it in it or not what do you suggest?
Would it be detected to check if exodus exists on the users pc if so then it runs one more powershell command to download one more app?