Jump to content
Hak5 Forums
daven2411

Virus in MrRobot

Recommended Posts

Hi all,

Whilst running BunnyUpdater this morning I got notification that there is a virus in MrRobot/md.ps1 file.

Kaspersky reported this and a screenshot is attached.

Please can someone advise me how to resolve.

I know I can disable Kaspersky while I run the update but when I turn the AV back on the virus will be detected when I next access the payload.

Please advise how I should proceed ???

Regards

Dave

2018-03-13 (2).png

Share this post


Link to post
Share on other sites

MrRobot uses Mimikatz. This is no surprise at all. Mimikatz is very old and almost all antiviruses will detect it. You can always write your "own" mimikatz and modify it as much as you can. Its not impossible but yet not easy.

Share this post


Link to post
Share on other sites

you could always encrypt Mimicatz but you will need a Program crypter cause a normal crypter will break it

Share this post


Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now

  • Recently Browsing   0 members

    No registered users viewing this page.

×