Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
S
S
Sl0w1302020-04-07 16:16:05
Malware
Sl0w130, 2020-04-07 16:16:05

Hashes of system processes?

The task arose to write a program that checks system processes (Task Manager -> Processes) by hash for possible modification.

5e86f26ce9b85820890126.png

For example, if a virus disguises itself as explorer.exe, then the program compares the "correct hash" (of the original explorer.exe) and the current hash (of the infected explorer.exe), after which, if the hashes do not match, it informs the user about it. Thus, the program should scan all running system processes.

Now the question itself is - is there a list of original hashes of system processes, such as explorer.exe, on the Internet?

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

2 answer(s)
Report
K
Keffer, 2020-04-07
@Keffer

What prevents to take the original from a distra? This is the first. Secondly, in order to constantly monitor hashes for changes, rather strong computing power is needed. There will be brakes like from a wretched Casper in due time.

Report
K
Karpion, 2020-04-07
@Karpion

Since new updates are constantly arriving in Windows, system files (including executable ones) change regularly.
PS: Your idea was implemented back in the days of DOS.

Similar questions
S
Sergey Mushtuk2014-10-30 22:39:51
How could the wallpaper change spontaneously in Android? 0Reply
K
Kimely2014-11-08 00:40:13
Can a virus get out of a virtual machine? 1Reply
S
Site2014-11-17 15:26:41
Virus with AES256 encryption. Is there a cure? 4Reply
E
Egor2016-11-22 12:26:31
How to catch the source of hundreds of thousands of outgoing connections directed to the gateway and to external Internet addresses? 2Reply
V
Vitaly Karasik2021-01-05 12:02:00
Need an API server to scan files for viruses. Which program or service to choose? 1Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question