How to Avoid 99% of Malicious EXE Files

Me: Runs a malicious Windows executable, "oh no!"
Also Me: resets WINE prefix because I use Linux

Day 2 of asking: what if you delete the start menu folder

I'm glad you stopped trolling

Major red flag for malicious emails is the presence of any sort of executable file. Why someone try to send them atal?

I use Linux with wine in a m so I don't even have to worry about getting my PC infected

Damn I wish I could have used these amazing tips but .exes won't even run on my Mac.

My old laptop got infected from malware that came from an exe
I was in class and in a rush while downloading it so i didn't check anything

Windows pro has a sandbox, you have to enable it in the windows features, but it's a very useful tool. For people who don't have Windows pro, there is a work around to get it enabled, or you can use sandboxie. These are often overlooked

Excellent video 👍 Thank you 💜

I should have watched this before running 800Mb .exe windows activator

Worth noting that at least some open-source projects will post a hashvalue (e.g. md5 or sha256) of the download package, which (to whatever extent you already trust the source) provides a way to verify that the downloaded file is what they claim it is.

Intro killed me 😂
Thanks, man of science.

Easy: Use an operating system that is so archaic that it depends on the file name extension to determine its file type, that doesn't go out of its way to hide those file name extensions from users, and whose file manager doesn't easily get fooled of the file type by appending additional extensions to a file name. In short, don't run Windows... run a UNIX or UNIX-like system instead.

Gotta love all of the people who expect me to ditch my PC, forsaking all of the programs I'm used to, buy another computer and relearn another operating system just because it is their opinion I shouldn't use Windows. Yeah, like I'm really gonna do all that because you said so.

It's pretty easy to know what's fake and what's not in email phishing. I don't get emails from hackers and scammers, but they are on my dad's emails, and I tell him if the emails he gets are real or not. They always say Your email name, not your actual name, since the person who is trying to hack or scam you won't know your name unless they get all the details from a data breach.

Only download files from trusted sites that you trust but if it looks suspicious like it has fake download button it's a virus

That Digital Signature Tab must be in Windows 11 as not in 10 Pro

I have an exe of jasc paint shop pro from 2001, I'm surprised it was even signed way back in 2001

stop using AI please

"If it's signed, it's probably fine" - nice rhymes man :)

I had a problem once with all the exes that were signed was invalid. It was on a virtual machine that I had not used in a long time. I just had to run an update so my root certificates would get updated and that fixed the problem.

Great tips!
Thanks for the video!

Don't use unsigned application if it's not open source

I say there's a simple way for micros**t to ditch signatures for something more secure. Private compression algorithms, devs can continue to use exe's for testing while for users they should expect some new format from m$ that is the original exe encrypted via some private algorithm, one they can update on a regular basis to make hacked ones harder to pass on. The OS just has to unencrypt the new format and run the exe normally. If the encryption used doesn't match what the updates provide it's auto flagged as unsafe. m$ can just add an id of some kind to the encrypted exe files that can then be used to download the newest version the encrypted exe (as in when they update the algorithm the copy of the exe they have gets reencrypted and replaces the existing one that use to be downloaded). Can't say this is my favourite method given it requires closed source code but it IS a reasonable windows specific solution.

This doesn't always mean anything. Remember your own "Never Wonder About Weird Windows Error Codes Again" video from two months ago? Microsoft signed the err.exe file with a root certificate that's not trusted by Windows 11... (nor Server 2019, which I also checked.)

nice tip Thio, but here's a tip for you: my family is still owed an ethernet cable by you

I have another tip, stop using Windows.

I have app locker turned on, from previous video

Thanks for the information,

I ❤ GitHub

How is Firefox's pdf reader compared to Adobe's, when talking about security?

Best protection against ransomware is window's controlled folder access.

Digital Signature means nothing. Small developers usually don't sign their binaries, but this does not mean that they are dangerous. Better tip is to AV scan or run your executables in a VM. Use virustotal and clamav to scan the binaries.

Happy new year you really are the legend of tech

how would malware get signed in the rare cases except if it is using stolen certificates and hopefully the stolen certificates would get reported and nullified.

Doesn't windows automatically check signatures when running an exe (user account protection)?

There's no menu item 'preferences' under 'edit' in my Acrobat Reader.

How to avoid 99% of malicious .exe files: just don't use them most of the time. Granted, I don't use Windows, but even if I did, my most used program would still be Chrome (what it is now). If you're ever finding yourself where you want to do something and the only option is to run some random .exe file, maybe reconsider.

And if you're worried about running a disguised file, .exe files disguising themselves really only works if you don't have "show file extensions" on.

i use linux, sooo

Use Linux

Considering most malware creators get a free cert from Comodo and Sectigo, looking for a valid cert is not useful anymore.

56th

Can u make a video about how to check if zip file containing virus both on mobile and PC and laptop

Who the heck is using email still? Oh, people who probably aren't watching this type of videos.

How to avoid malware: Dont have internet

(Stolen)

Better tip is to actually check what you downloaded because malware can be signed all the time and plenty of small projects release unsigned binaries.