Jump to content

Possible false positive Malware.Packer.Gen on Winrar file


Recommended Posts

When I ran Malwarebytes Anti-Malware Full scan it found a virus called "Malware.Packer.Gen" from the location called c:\program files\WinRAR\Zip.SFX. I think, that this is a false positive, but am I right? I forgot to save the log file, but here's a screenshot of Mbam telling about that "infection":

14cb7dd.jpg

Link to post
Share on other sites

I ran the scan with normal mode instead developer mode, because I did not read the "read before" topic. Did I do something wrong? Here's the log of the developer mode scan. Could you please check it and I won't bother you anymore. :)

Malwarebytes' Anti-Malware 1.50.1.1100

www.malwarebytes.org

Tietokantaversio: 6440

Windows 6.1.7601 Service Pack 1

Internet Explorer 9.0.8112.16421

25.4.2011 20:13:42

mbam-log-2011-04-25 (20-13-38).txt

Tarkistustyyppi: T

Link to post
Share on other sites

Are you sure, that the Winrar file I posted is clean and that alert is a false positive? I mean, that I did not run the scan with developer mode, but with normal mode. I'm a paranoid person and I have a fear, that the file I posted is broken, because I'm not sure did it finished uploading as attachment, because I did not check is the uploading finished, before I did the above post. Can I feel safe now? I bet, that you think, that I'm insane...

Here's the log following a scan with the latest database:

Malwarebytes' Anti-Malware 1.50.1.1100

www.malwarebytes.org

Tietokantaversio: 6443

Windows 6.1.7601 Service Pack 1

Internet Explorer 9.0.8112.16421

25.4.2011 22:09:57

mbam-log-2011-04-25 (22-09-57).txt

Tarkistustyyppi: T

zip_sfx.zip

Link to post
Share on other sites

Big thanks for the answer! :) Is it likely, that the file I posted FIRST TIME was somehow broken, because I did not check is the uploading as attachment finished. Is it even possible, that the attachment file can be broken and is it possible, that I posted the file before the uploading is finished?

Link to post
Share on other sites
Big thanks for the answer! :) Is it likely, that the file I posted FIRST TIME was somehow broken, because I did not check is the uploading as attachment finished. Is it even possible, that the attachment file can be broken and is it possible, that I posted the file before the uploading is finished?

Anyone?

Link to post
Share on other sites
Is it even possible, that the attachment file can be broken and is it possible, that I posted the file before the uploading is finished?

That's not possible. The file needs to be fully uploaded.

Link to post
Share on other sites
  • 1 year later...

Hello

I've got the same result "Malware.Packer.Gen" when scaning my pc on the full scan mode, the thing is that I suspect this malware was used to steal a password from a bank application.

Can this malware be used as a keylogger or to control my pc via IP???

I will see to find the file, can I send it to you in order to analyse and confirm if is safe or not???

Thx

Link to post
Share on other sites

You can upload the file to here:

www.virustotal.com

it will scan it with 40+ virus scanners and give a report.

If you want to upload it please start a new post in this forum. Malware.packer.gen can hit a lot of different files.

Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
  • Recently Browsing   0 members

    No registered users viewing this page.

Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.