The only thing that a tampered video file could do is trip a bug in VLC or another video player, or your web browser if it is set to automatically follow links. What exploits work on Windows normally won't work on Linux. The two use different binary formats for the OS that are incompatible. Even if they did, Windows is very different from Linux in design. Video files do not contain executable code. Then it will give you option to download codec: h**p:///file/NfpCĪnd another redirection: h**p://a5./dl/8va8w/CodecFix.exeĪnd that same file is definitely malicious.įor the closure I didn't analyze that file on my own, but what I did is just a quick peek into the strings, so I can not be sure how this file is acting on the real system neither if it's using vulnerability from VLC.Īs a programmer, the answer is simply put: "No." Ok, we have one problem, there is no VLC inside that sandbox, so I'd like to see what will happen in the same box with VLC, but so far there is a suspicious URL inside that file:ĭO NOT OPEN LINKS! h**p://aavid.xyz?id=&dlgx=200&dlgy=200&adv=0Īfter this one it will redirect you on new one: h**p:///drm.php?id=&dlgx=200&dlgy=200&adv=0 Make sure that your VLC is up to date.Ĭan you submit that file to this website Cuckoo Sandbox and then paste the report here, just out of curiosity let us see, what will happen when that file is "fired" in sandbox.ĮDIT: After being analyzed with cuckoo sandbox. Here you can check CVE list of VLC.īut don't panic, just because your VLC freeze, that doesn't necessarily mean that someone hacked you.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |