evercookie
evercookie copied to clipboard
samyk
Malware detected
Just to let you know Symantec Endpoint Protection has just detected malware in the evercookie-master.zip download "Trojan.Maljava!gen26" in evercookie.jar
Hah, interesting, does that quarantine evercookie entirely? Perhaps I can have it be downloaded separately if it is removing the entire zip/package if that's the case.
Hmm, looks like the exploit I used to try to break out of the Java sandbox is being detected. I can build a version without it if you like, or I can do some obfuscation to prevent detection. On my test systems the rest of evercookie works fine, but we can't have people getting virus warnings when visiting evercookie sites.
An obfuscated version that evades the filters would be awesome. If we find that it's rediscovered in the future, we can have two separate versions and have users perform an additional step to acquire the drop-it-like-it's-hot-java version.
Okay, I will see what I can pull together. It might take me a few days - things are extremely busy at work right now.
Okay, I spent some time on this. Current detection status: http://virusscan.jotti.org/en/scanresult/a574f7b18262d0b0b3566eb3cefe1d026c961d62. Four scanners to go until we hit stealth mode again ;)
This is still happening with Windows Defender. Tried to install evercookie through Bower and it was throwing errors. Windows Defender showed it was detected as malware. Once I allowed it through Windows Defender, all was well. Works great through Bower on my Mac's.
Speaking of -- it would be awesome if this was listed in the Bower package directory.
http://bower.io/search/
I've got virus warning in Kaspersky anti-virus - virus found in evercookie.jar. Will the rest of it work, if I just delete evercookie.jar?
@gabrielbauman You'll also want to check it against VirusTotal.
The page you linked only lists 22 scanners while VirusTotal has 54.
