Store Page
Assetto Corsa
All Discussions Screenshots Artwork Broadcasts Videos News Guides Reviews

Assetto Corsa

Store Page
View Stats:
Global Achievements
PowerOfNexus 2 Jan @ 9:57pm
SOLVED: Content Manager flagged with Ransomware?
EDIT: All g.

https://www.virustotal.com/gui/file/fce418ad064a6364d4f938833de95747f3e4af1cd0b861fa1707c024fb96d88c/summary

Just did a scan of the .exe from the GitHub repo on VirusTotal and its been flagged by more than one security vendors. Most of them flagged it as the Artemis Ransomware.

Looking in the Behavior tab under Malware Behavior, it mentions the following details.

Impact
Data Encrypted for Impact:
https://github.com/MBCProject/mbc-markdown/blob/main/impact/data-encrypted-for-impact.md

File System
Create Ransomware File
https://github.com/MBCProject/mbc-markdown/blob/main/micro-behaviors/file-system/create-file.md#methods


False Positive?
Thanks!
Last edited by PowerOfNexus; 5 Jan @ 2:58am
< >
Showing 1-15 of 15 comments
lx 3 Jan @ 1:06am 
the one cm i have downloaded from the official place in june does not have flags, except 1, which is probably false, from maxsecure.

i dont know about your file and source. fake cm exist.

cm is generally badware, you dont need it and the risks with it

latest cm is "clean". source: link[acstuff.ru]
Last edited by lx; 3 Jan @ 1:19am
#1
PowerOfNexus 3 Jan @ 8:49pm 
Originally posted by lx:
latest cm is "clean". source: link[acstuff.ru]
Thanks. Just downloaded CM from acstuff. VT came back with the exact results as you just mentioned.

Originally posted by lx:
i dont know about your file and source.
The source of the .exe is from the Official CM GitHub repo. I downloaded Content Manager.zip
https://github.com/gro-ove/actools/releases/tag/v0.8.2727.39678

Originally posted by lx:
cm is generally badware, you dont need it and the risks with it
However why would CM be considered Badware? What are the risks and the behavior?
Last edited by PowerOfNexus; 3 Jan @ 9:01pm
#2
lx 4 Jan @ 12:14am 
ive seen the download you mentioned and it seems to be a false positive, as its from some unknown antimalware software, but you never know. still the source is provided and someone can check it, if he cares enough to spend a week(?) with it.
the maker has given a +1 on vt :steamhappy:

the risks and behavior can be seen at the vt site, by clicking various stuff on the report.
i generally disagree with pretty much any concept of theirs - its a mess and makes more mess, so its bad(ware). on the surface its just a small file, but beneath it...
...actually the file is not small, makes me wonder what is inside, but i cant be bothered to check
Last edited by lx; 4 Jan @ 12:24am
#3
Roger Longkoch 4 Jan @ 12:51am 
Originally posted by PowerOfNexus:
Originally posted by lx:
latest cm is "clean". source: link[acstuff.ru]
Thanks. Just downloaded CM from acstuff. VT came back with the exact results as you just mentioned.

Originally posted by lx:
i dont know about your file and source.
The source of the .exe is from the Official CM GitHub repo. I downloaded Content Manager.zip
https://github.com/gro-ove/actools/releases/tag/v0.8.2727.39678

Originally posted by lx:
cm is generally badware, you dont need it and the risks with it
However why would CM be considered Badware? What are the risks and the behavior?

It's fine. It just needs a high level of clearance to do what it does via drag and drop.
#4
lx 4 Jan @ 3:11am 
are you talking about elevated privileges, the ones used to make or brake your system?
you can drag and drop cm into your browser, on the virustotal page, without elevation...
#5
Roger Longkoch 4 Jan @ 4:27am 
Originally posted by lx:
are you talking about elevated privileges, the ones used to make or brake your system?
you can drag and drop cm into your browser, on the virustotal page, without elevation...

You're spreading panic. CM installed things. If you, or anyone else, is worried, then you can just do everything manually - good luck with that.

If CM was breaking systems, then there'd be lots of videos about it on YouTube. Instead, there are none that I can see.
Last edited by Roger Longkoch; 4 Jan @ 4:57am
#6
Curious297 4 Jan @ 4:36am 
Originally posted by Roger Longkoch:
Originally posted by lx:
are you talking about elevated privileges, the ones used to make or brake your system?
you can drag and drop cm into your browser, on the virustotal page, without elevation...

You're spreading panic. CM installed things. If you, or anyone else, is worried, then you can just do everything manually - good luck with that.

If CM was braking systems, then there'd be lots of videos about it on YouTube. Instead, there are none that I can see.

Bro, if you check LX's previous posts, that is all he does is post about CM being a virus or it will break you computer. The moment anyone says a negative about CM, he'll be there spouting his scare tactics, drama, BS about content manager but ask him exactly how he arrives at this conclusion and to prove his position, he gets gnarly. This is why I blocked him as it always ends like this!
#7
Roger Longkoch 4 Jan @ 4:56am 
Originally posted by Curious297:
Originally posted by Roger Longkoch:

You're spreading panic. CM installed things. If you, or anyone else, is worried, then you can just do everything manually - good luck with that.

If CM was braking systems, then there'd be lots of videos about it on YouTube. Instead, there are none that I can see.

Bro, if you check LX's previous posts, that is all he does is post about CM being a virus or it will break you computer. The moment anyone says a negative about CM, he'll be there spouting his scare tactics, drama, BS about content manager but ask him exactly how he arrives at this conclusion and to prove his position, he gets gnarly. This is why I blocked him as it always ends like this!

Ok, thanks for the heads-up.
#8
lx 4 Jan @ 7:45am 
Originally posted by Roger Longkoch:
...You're spreading panic. ...
you dont seem paniced at all. i must be bad at what i do

Originally posted by Curious297:
... if you check LX's previous posts, ...
yes do that. see whos who :D
#9
WKB 5 Jan @ 1:04am 
As soon as someone saying something negative about AC/CM, always specific two people shows up and floods the discussion with quoting box with very short reply.

Learn already.

Also I'll make sure, my point is not who's correct or not.
Last edited by WKB; 5 Jan @ 1:05am
#10
Roger Longkoch 5 Jan @ 2:00am 
Originally posted by WKB:
As soon as someone saying something negative about AC/CM, always specific two people shows up and floods the discussion with quoting box with very short reply.

Learn already.

Also I'll make sure, my point is not who's correct or not.

Where's the proof that CM is system breaking badware?
#11
lx 5 Jan @ 2:07am 
there is no right and wrong. everyone is free to use badware as much as they want.
but there is a thing - plague spreads
#12
Roger Longkoch 5 Jan @ 6:42am 
Originally posted by lx:
there is no right and wrong. everyone is free to use badware as much as they want.
but there is a thing - plague spreads

Opinions are only as good as the evidence that backs them up, and you don't have any.
#13
lx 5 Jan @ 9:10am 
yes man, i dont have evidence that the sun exist, it could be an illusion. so doesnt have nasa and the likes ;)
stop demonstrating you capacity, without the will to improve, as i can only mock you this way.

btw there is one evidence person just like you in the steam's forums, you might make good buddies with him. hes getting banned once in a while though, so i dont know if hes still around. go look for him anyway, well be fine during your absence.
#14
Roger Longkoch 5 Jan @ 12:47pm 
Originally posted by lx:
yes man, i dont have evidence that the sun exist, it could be an illusion.

OK, that makes your position clear.
#15
< >
Showing 1-15 of 15 comments
Per page: 1530 50

Assetto Corsa > General Discussions > Topic Details
Date Posted: 2 Jan @ 9:57pm
Posts: 15

Discussions Rules and Guidelines