Trojan in my Application?

Ex-RoNiN

Ex-RoNiN

Ex-RoNiN

Soldato
Joined
18 Oct 2002
Posts
12,354
I built an application with .NET 2003 some time ago, and today as I was scanning my PC with a-squared Free, it detected the following Trojan in my setup.exe (Used Visual Studio builder to create it):

Trojan-Dropper.Win32.Joiner.dp

How is this possible? The only file it is found is in that setup.exe....is there some code that gets detected as a trojan (the software is legit, it does stuff to XML files only :p ) and can I safely ignore this? It was built on another machine which was protected by Enterprise security and I just backed it up on my local machine.

Speaking of local machine, it has a Trojan in one of the Visual Studio library files, which was caught months ago by AVG - but I did not use this machine to build or even read the project in the setup.exe....so yeah, can I ignore this?
 
It could have embedded itself into the file, AFTER the file was compiled, so it could be a virus that has entered your current machine.
 
Anti-virus software often gets false positives. Most work on a signature based approach, so if something in your code looks vaguely suspicious it can often get it wrong.

However as swinnie says binaries can get infected by viruses (well any file really)..

Try submit it to http://www.cwsandbox.org/?page=submit and see what the analysis there gives.
 
Last edited:
Thanks guys, just ran the file through all of the above online scanners, and it came back as clean, including the online version of a-squared :rolleyes:

Thanks very much :)
 
I compiled a virus once, was trying to make software to log the mouse location and disable the screen-saver on one corner.

NOD32 didn't like my code, lol.

I've also had a program returned to me by a beta tester infected with one of these viruses which plants itself in EXEs.
 
You must log in or register to reply here.
Back
Top Bottom