March 31, 2021

Noob Question: Can heuristic antivirus Aggregators detect malicious shellcode?

Hello everyone,
I have a .dmg file from a website that I “semi-trust”. I have run the .dmg on a second MacBook and it did not show any malicious behavior. I also googled both the MD5 and SHA256 checksums but could not find anything. Virustotal shows me a perfect score.
Just recently I learned about shellcode and am wondering now if somebody could have injected the .dmg with his own malicious shellcode? And if yes would Virustotal recognize the malicious code? If I can not be sure would you recommend to run the .dmg on a VM with no Internet? That way no information can be leaked outside.
Thank you very much for your help (Y)!

Leave a Reply

Your email address will not be published. Required fields are marked *

Note: By filling this form and submitting your commen, you acknowledge, agree and comply with our terms of service. In addition you acknowledge that you are willingly sharing your email address with AiOWikis and you might receive notification emails from AiOWikis for comment notifications. AiOWiksi guarantees that your email address WILL NOT be used for advertisement or email marketting purposes.

This site uses Akismet to reduce spam. Learn how your comment data is processed.