Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

.BAT File


  • Please log in to reply
1 reply to this topic

#1 vom53

vom53

  • Members
  • 54 posts
  • OFFLINE
  •  
  • Location:East Coast
  • Local time:08:35 PM

Posted 17 September 2011 - 01:52 PM

How do you know if a bat file is malicious or a virus?

BC AdBot (Login to Remove)

 


#2 Didier Stevens

Didier Stevens

  • BC Advisor
  • 2,734 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:05:35 AM

Posted 18 September 2011 - 04:08 AM

How do you know if a bat file is malicious or a virus?


Do you already know if it is a real bat file or another type disguising as a bat file?
If it is a real bat file, change the extension to .TXT and open it with Notepad. Try to understand what it does.
The reason I'm suggesting to change the extension, is to prevent you from launching the bat file by accident.

If you don't know, I suggest you upload it to http://www.VirusTotal.com

Didier Stevens
http://blog.DidierStevens.com
http://DidierStevensLabs.com

SANS ISC Senior Handler
Microsoft MVP 2011-2016 Consumer Security, Windows Insider MVP 2016-2019
MVP_Horizontal_BlueOnly.png

 

If you send me messages, per Bleeping Computer's Forum policy, I will not engage in a conversation, but try to answer your question in the relevant forum post. If you don't want this, don't send me messages.

 

Stevens' law: "As an online security discussion grows longer, the probability of a reference to BadUSB approaches 1.0"





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users