Menu
▾
▴
[NSIS-devel] NSIS,NSEI and false positives
|
From: Fernando C. <fc...@gm...> - 2020-01-25 02:02:22
|
I was sadly astonished to read https://nsis.sourceforge.io/NSIS_False_Positives surely to blame to a series of "news articles" that started making the rounds two or three years ago: https://www.microsoft.com/security/blog/2017/03/15/ransomware-operators-are-hiding-malware-deeper-in-installer-packages/ https://www.mcafee.com/blogs/other-blogs/mcafee-labs/ransomware-families-use-nsis-installers-to-avoid-detection-analysis/ https://isc.sans.edu/forums/diary/Quick+analysis+of+malware+created+with+NSIS/23703/ It's been a while since I used NSIS. I used NSIS 2.x last time, I was very happy to find NSIS in active development and a v3.x out already. When I used, I remember using some third party quick GUI tool to create the NSIS script, I believe it was this: https://nsis.sourceforge.io/NSIS_Quick_Setup_Script_Generator but maybe it was this? https://sourceforge.net/projects/nsei/ Not sure. The last one shows "malware detected, download at your own risk". I wonder if it' s related to the "false positives" issue described in the URLs above, or if indeed NSEI includes some malware. In any case why would SourceForge leave a piece of malware available for download?? So, can anyone please point me to any qucik way to do an Installer with NSIS 3.x where I only want to 1. Display a logo/license 2. Copy a single exe to C:\program files\appname 3. Create a desktop shortcut and folder in the windows start button hierarchy Thanks in advance... FC -- ---- During times of Universal Deceit, telling the truth becomes a revolutionary act Durante épocas de Engaño Universal, decir la verdad se convierte en un Acto Revolucionario - George Orwell |