File infector viruses

If you run your computer on on Friday the 13th, chances are, not only program run that day is deleted.but also infects .EXE files repeatedly until they grow too large for the computer.If it is so,your system is infected with logic bomb called Jerusalem virus ,which is a file infecting virus.

A file-infecting virus is a type of malware that infects executable files with the intent to cause permanent damage or make them unusable. A file-infecting virus overwrites code or inserts infected code into a executable file. This type of virus can infect a number of operating systems, including Macintosh, Windows and Unix.

A file-infecting virus is one of the most common types of virus.  A file-infecting virus can also spread across the system and over the network to infect other systems.

Moreover, a severe form of file-infecting virus can also completely reformat a hard drive. Win32.Sality.BK is a popular file-infecting virus that was among the top 10 malware infections.

History of file infector virus

The first file viruses started to appear in 1987. Most concentrated on COM files; COMMAND.COM in particular. The first of these to infect COMMAND.COM is typically reported to be the Lehigh virus. Cascade is reported to  be the first self-encrypting virus. At this time other work was done to create the first EXE infector: Suriv-02(Suriv = Virus backward). (This virus evolved into the Jerusalem virus.) A fast-spreading (500,000 replications per hour) worm hit IBM mainframes during this year: the IBM Christmas Worm. 

Characteristics of File Infectors

Although there are many different kinds of file infector viruses, most of them operate the same and take the following course of actions.

– Once a user executes an infected file, the virus copies the file and places into an area where it can be executed.  In most cases, this would be the RAM.

– The malicious code runs first while the infected file remains quiescent

– The virus then copies itself in a location separate from where the infection occurred, allowing it to continuously infect files as the user functions other programs

– When the initial process is set in to place, the virus grants control back to the infected file

– When a user opens another application, the dormant virus proceeds to run again.  It then inserts a copy of itself into files that were previously uninfected which enables the cycle to repeat consistently

How to check if a file contains a virus ?

Viruses (file infectors) are less common now a days.

  • Head to Virustotal.com
  • Upload your file (up to 128MB)
  • Wait for it to be analysed
  • Check the results from over 50 virus scanners

Virustotal is a website which allows you to upload files up to 128MB in size and will then use over 50 scanners to check if it contains any malware: viruses, Trojans, worms and more.

Scanning engines include Bitdefender, Kaspersky, Avast, McAfee, Malwarebytes and many more names you will have heard of. 

Virustotal has been around since 2007, but was acquired in 2012 by Google.

It can check a URL if it is clean or have any virus.

File infectors can be both a nuisance, as well as a tremendous threat to your computer.  For this reason, it is recommended to protect your system with anti-virus software.