Detecting by avast

c++ / delphi package - dll injection and api hooking
Post Reply
pambol
Posts: 50
Joined: Sat Jun 23, 2018 1:15 am

Detecting by avast

Post by pambol »

InjectLibraryW and UnInjectLibraryW are being detected by avast (behavior module)
madshi
Site Admin
Posts: 10753
Joined: Sun Mar 21, 2004 5:25 pm

Re: Detecting by avast

Post by madshi »

Is Avast writing text like "detected InjectLibraryW"? Or how do you know it's detecting InjectLibraryW?

Checking with my PrintMonitor demo on www.virustotal.com:

http://madshi.net/PrintMonitor.zip

It seems Avast actually reports it as clean, although Kaspersky complains. Unfortunately false positives are very usual these days. I can't really do anything against false positives. All we can do is complain to the AV companies who're producing false positives so that they correct their mistake.
Post Reply