Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Testing a potentially unsafe exe


  • Please log in to reply
18 replies to this topic

#1 JimmyKarter

JimmyKarter

  • Members
  • 127 posts
  • OFFLINE
  •  
  • Local time:09:57 AM

Posted 18 August 2015 - 04:04 AM

Is there any way of peeking inside an exe?

 

There is this "Free steam games exe" file. Now I know these are all risky, however this video I'm seeing is the first legitimate one I have ever seen.

 

The vast majority of people I see making comments like it very much, and only a few report a virus. Those may be false alerts, or perhaps true ones.

This channel isn't some trash channel either, it's actually doing rather alright

 

The video has a quarter of a million views and instead of a red lightsaber, it' nearly the other way around. I'm tempted to believe that this is real. But how.... can I inspect its exe file?


Edited by JimmyKarter, 18 August 2015 - 04:06 AM.


BC AdBot (Login to Remove)

 


#2 Sintharius

Sintharius

    Bleepin' Sniper


  • Members
  • 5,639 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:The Netherlands
  • Local time:03:57 PM

Posted 18 August 2015 - 04:11 AM

You can upload a file to a scanner such as VirusTotal.

However as a Steam gamer I wouldn't touch it with a ten foot pole... there is no such thing as "free Steam games".

If something sounds too good to be true, it probably is.

#3 JimmyKarter

JimmyKarter
  • Topic Starter

  • Members
  • 127 posts
  • OFFLINE
  •  
  • Local time:09:57 AM

Posted 18 August 2015 - 05:40 AM

I know it sounds dubious, however there is every sense of authenticity to it. Except for the whole free part.

 

But will a virus scanner be able to figure this out? Should I try multiple virus scanners, from MBAM to the one you named?



#4 Sintharius

Sintharius

    Bleepin' Sniper


  • Members
  • 5,639 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:The Netherlands
  • Local time:03:57 PM

Posted 18 August 2015 - 05:45 AM

VirusTotal will automatically run the file against multiple AV and AM scanners, MBAM included.

#5 NickAu

NickAu

    Bleepin' Fish Doctor


  • Moderator
  • 12,708 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:127.0.0.1 Australia
  • Local time:12:57 AM

Posted 18 August 2015 - 05:55 AM

I know it sounds dubious,

You said it.

You can upload a file to a scanner such as VirusTotal.

However as a Steam gamer I wouldn't touch it with a ten foot pole... there is no such thing as "free Steam games".

If something sounds too good to be true, it probably is.


Edited by NickAu, 18 August 2015 - 05:57 AM.


#6 DeimosChaos

DeimosChaos

  • BC Advisor
  • 1,420 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:United States, Delaware
  • Local time:10:57 AM

Posted 18 August 2015 - 11:19 AM

You can upload a file to a scanner such as VirusTotal.

However as a Steam gamer I wouldn't touch it with a ten foot pole... there is no such thing as "free Steam games".

If something sounds too good to be true, it probably is.

There are some games that you can get directly off Steam that are free...mostly indie games and are in a beta form of some sort. But yeah, generally there aren't any free games off of Steam and I wouldn't touch that file. More than likely they are pirated games and aren't actually "free". So if it isn't directly from the Steam menu... don't get it.

 

Edit* I know I nit picked a little there!  :bounce:


Edited by DeimosChaos, 18 August 2015 - 11:19 AM.

OS - Ubuntu 14.04/16.04 & Windows 10
Custom Desktop PC / Lenovo Y580 / Sager NP8258 / Dell XPS 13 (9350)
_____________________________________________________
Bachelor of Science in Computing Security from Drexel University
Security +


#7 rp88

rp88

  • Members
  • 2,967 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:02:57 PM

Posted 18 August 2015 - 11:19 AM

Virustotal has no guarantee of finding if a file is infected, if the file contains a virus that has existed long enough to get onto the database of one of the 50 scanning engines used by virustotal then it will be detected, if it's a brand new virus then it will not be detected.

The best advice is NOT to run the file, but if someone ever found themselves actually NEEDING to run a file they couldn't be sure about then using a virtual machine is how they would do it. Also they would have system images for the main machine stored on external media, because in some cases viruses operating within a virtual machine can still do unpleasant things to the rest of the machine.

Also, just because something isn't malicious in a virtual machine doesn't mean it won't be malcious when it comes out, many viruses are coded not to act maliciously in a virtual machine so that they can avoid being analysed, but when they are run on a real machine they notice that fact and do their evil work. So if a file was run and found to be safe in a virtual machine it still couldn't be considered safe for use on a regular machine.

Edited by rp88, 18 August 2015 - 11:24 AM.

Back on this site, for a while anyway, been so busy the last year.

My systems:2 laptops, intel i3 processors, windows 8.1 installed on the hard-drive and linux mint 17.3 MATE installed to USB

#8 Sintharius

Sintharius

    Bleepin' Sniper


  • Members
  • 5,639 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:The Netherlands
  • Local time:03:57 PM

Posted 18 August 2015 - 11:22 AM

There are some games that you can get directly off Steam that are free...mostly indie games and are in a beta form of some sort. But yeah, generally there aren't any free games off of Steam and I wouldn't touch that file. More than likely they are pirated games and aren't actually "free". So if it isn't directly from the Steam menu... don't get it.

I know, if it's something like Team Fortress 2 (which is free to play on Steam) then we wouldn't be having this conversation, are we? :lol:

Mostly those "free Steam games" offer are aimed at the ones that you have to pay for.

#9 DeimosChaos

DeimosChaos

  • BC Advisor
  • 1,420 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:United States, Delaware
  • Local time:10:57 AM

Posted 18 August 2015 - 11:29 AM

 

There are some games that you can get directly off Steam that are free...mostly indie games and are in a beta form of some sort. But yeah, generally there aren't any free games off of Steam and I wouldn't touch that file. More than likely they are pirated games and aren't actually "free". So if it isn't directly from the Steam menu... don't get it.

I know, if it's something like Team Fortress 2 (which is free to play on Steam) then we wouldn't be having this conversation, are we? :lol:

Mostly those "free Steam games" offer are aimed at the ones that you have to pay for.

 

Very true!  :lol:

"Free Steam Games" sounds like a torrent name to me! Which it may be? I am not sure where the OP found this free games thing at....


OS - Ubuntu 14.04/16.04 & Windows 10
Custom Desktop PC / Lenovo Y580 / Sager NP8258 / Dell XPS 13 (9350)
_____________________________________________________
Bachelor of Science in Computing Security from Drexel University
Security +


#10 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 51,128 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:10:57 AM

Posted 18 August 2015 - 01:06 PM

Comprehensive List of Online File analyzers & services

I always recommend getting second opinions from more than one source.
.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif

#11 JimmyKarter

JimmyKarter
  • Topic Starter

  • Members
  • 127 posts
  • OFFLINE
  •  
  • Local time:09:57 AM

Posted 19 August 2015 - 03:39 AM

 

I know it sounds dubious,

You said it.

You can upload a file to a scanner such as VirusTotal.

However as a Steam gamer I wouldn't touch it with a ten foot pole... there is no such thing as "free Steam games".

If something sounds too good to be true, it probably is.

 

Thanks for your help. I wasn't originally capable of reading those two posts.

If it has a virus, I will verify it myself. Please don't waste post space.


Comprehensive List of Online File analyzers & services

I always recommend getting second opinions from more than one source.

Thanks, this is great.


Edited by JimmyKarter, 19 August 2015 - 03:43 AM.


#12 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 51,128 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:10:57 AM

Posted 19 August 2015 - 05:33 AM

You're welcome on behalf of the Bleeping Computer community.
.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif

#13 JimmyKarter

JimmyKarter
  • Topic Starter

  • Members
  • 127 posts
  • OFFLINE
  •  
  • Local time:09:57 AM

Posted 20 August 2015 - 12:09 AM

Unfortunately, the issue is that my exe is 170 some MB. None of these scanners can read this thing.

 

Will just downloaded av softwares such as MBAM work?



#14 Didier Stevens

Didier Stevens

  • BC Advisor
  • 2,659 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:04:57 PM

Posted 20 August 2015 - 02:50 AM

I can have a look. Where did you download it from?


Didier Stevens
http://blog.DidierStevens.com
http://DidierStevensLabs.com

SANS ISC Handler
Microsoft MVP 2011-2016 Consumer Security, Windows Insider MVP 2016-2018
MVP_Horizontal_BlueOnly.png

 

If you send me messages, per Bleeping Computer's Forum policy, I will not engage in a conversation, but try to answer your question in the relevant forum post. If you don't want this, don't send me messages.

 

Stevens' law: "As an online security discussion grows longer, the probability of a reference to BadUSB approaches 1.0"


#15 JimmyKarter

JimmyKarter
  • Topic Starter

  • Members
  • 127 posts
  • OFFLINE
  •  
  • Local time:09:57 AM

Posted 20 August 2015 - 03:59 AM

Here's the video.

Thanks.






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users