0 filer likt
5 kommentarer
0 videoer
0 opplastninger
0 følgere
@meimeiriver Hi MeiMei. I am still hoping you can share the VT report for the infected file as I would like to analyse it. Thank you.
@meimeiriver (Un?)fortunately the VT scan that alerted me to it being sus was run sandboxed, so I don't have the address available any longer. Could you provide the report link, please?
In more advanced attacks, malicious code can be run just by Windows indexing the file or providing the preview image. When you say it would only be executed if the plugin asi was run; is that the lua plugin that was in the same directory? Ironically I was about to mod the game for the first time, then this happened .. lol. Any additional info would be appreciated, just so I'm clear on whether or not I may have inadvertently run it.
Thank you.
@AUSSIE_LAD_96 yes, 100% sure.
@meimeiriver More information needs to be provided for users who downloaded the file. For those that downloaded it and extracted the contents but did not execute or run any of the files in isolation or through GTA, are they compromised? If it was extracted in a sandbox, and never then deleted immediately after running through VT, are they compromised? The VT report should also be provided for users who downloaded the file to know what, if anything, they are dealing with.
Virus bundled in most recent upload.