Apparently MS is too smart for their own good.alexfru wrote:Somehow virustotal's minions dislike my compiler's output.
I submitted a file to VirusTotal (one that I know is good - it's my favorite assembler) - 3 of 69 don't like it (one of them is MS).
Of course, Windows Security knows that the file is OK, however
I then edit the source and make only one minor insignificant change (I change the case of a single letter in the DOS header string - you knowVirusTotal wrote:May differ from commercial off-the-shelf product. The company decides the particular settings with which the engine should run in VirusTotal.
the one that goes "This program cannot be run in DOS mode." and re-assemble it so that the hash is different. I submit this different but same executable.
This time there are only 2 of 69 haters and MS loves it. So what happens next? That's right, I resubmit the original file and click on the reanalyze icon. MS saw
the same-different-same file twice and deduced or some such thing that the file must be OK.
You gotta love* MS.
Hurry, this special event won't last long!
*OK, so you don't love MS, but at least MS loves your file.