Jump to content

Recommended Posts

PS2EXE is a PowerShell-script to executable converter. Many executables that are generated by this converter are getting flagged as malware.

Here is an example from VirusTotal:
https://www.virustotal.com/gui/file/106a07262b7955b8996bf836908a7bc26df4930b5bd5d451d648086bd1bf7b79/detection

Here is the GitHub Repository of PS2EXE:
https://github.com/MScholtes/PS2EXE

Have a nice day,
Tobi | Hope-IT-Works

  • Like 1
Link to post
Share on other sites

  • 1 month later...
42 minutes ago, Porthos said:

Is the actual installed Malwarebytes detecting this or are you just going off the VT results?

Hey, the actual Malwarebytes software is detecting these files as malicious software. I thought that the Virus Total analysis would help to understand why these files are getting detected. Let me know if you need more information. 

Greetings,

Tobi | Hope-IT-Works

Link to post
Share on other sites

  • 9 months later...

Malwarebytes
www.malwarebytes.com

-Log Details-
Protection Event Date: 4/19/22
Protection Event Time: 1:43 PM
Log File: 41f8871e-c008-11ec-b7c2-001a7dda7113.json

-Software Information-
Version: 4.5.8.191
Components Version: 1.0.1666
Update Package Version: 1.0.53887
License: Premium

-System Information-
OS: Windows 10 (Build 19044.1620)
CPU: x64
File System: NTFS
User: System

-Blocked Malware Details-
File: 1
Trojan.Crypt.XZZ.Generic, E:\Close_AIB_Summary2017.exe, Quarantined, 12639, 1033831, 1.0.53887, , ame, , 99105EBFDA972CBDEAEBCA8C05E5E62F, 7508024B1D798082BC7E77FAE8A2FB60706CBA52D76511913C714161E9928F14


(end)

CloseFile Malware.txt

Link to post
Share on other sites

  • 1 year later...

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.