Let's collect all how-to for making MASM32 compiled apps avoid false positives

Started by v104, February 23, 2011, 04:33:01 AM

Previous topic - Next topic

v104

Guys,
My boss wants me to develop software that'll be deployed on many customer's systems. He doesn't care what language I use as long as it works. With this in mind, I want to be sure I've got the full picture. Here's what I found so far:

my exe a virus?
http://www.masm32.com/board/index.php?topic=15207.0

Getting assembled programs not to be detected as a virus.
http://www.masm32.com/board/index.php?topic=10344.0

hutch--

Its reasonably straight forward, on later OS version use BOTH a manifest file and a version control block. Avoid any dirty trick like the plague (standard MZ and PE headers only) and use fully documented API functions for your tasks. There is no surefire way to avoid false positives with any software but if you keep your software well designed and well behaved you will rarely get any problems. The other factor of course is make sure your software is absolutely virus and trojan free.
Download site for MASM32      New MASM Forum
https://masm32.com          https://masm32.com/board/index.php

jj2007

Quote from: hutch-- on February 23, 2011, 05:01:57 AMIts reasonably straight forward, on later OS version use BOTH a manifest file and a version control block.

Is there any minimalistic example for that technique?

By the way, is it possible to embed the manifest into the resource file without using an external xml file?
This does not work in rsrc.rc:

1 RT_MANIFEST
BEGIN
<?xml version="1.0" encoding="UTF-8" standalone="yes"?>
<assembly xmlns="urn:schemas-microsoft-com:asm.v1" manifestVersion="1.0">
<description>JJ's toys</description>
<dependency>
<dependentAssembly>
<assemblyIdentity
type="win32"
name="Microsoft.Windows.Common-Controls"
version="6.0.0.0"
processorArchitecture="X86"
publicKeyToken="6595b64144ccf1df"
language="*"
/>
</dependentAssembly>
</dependency>
</assembly>
END

hutch--

Probably because RC.EXE does not have a MANIFEST notation that I have seen.


1 24 "jjtoys.xml"
Download site for MASM32      New MASM Forum
https://masm32.com          https://masm32.com/board/index.php


hutch--

Thats simple to do, write one that include BOTH a manifest file and a version control block.
Download site for MASM32      New MASM Forum
https://masm32.com          https://masm32.com/board/index.php