Log in

View Full Version : KAM 1.30 released


KaKeeware
April 21st, 2007, 20:52
Hi Guys,

1.30 brings more APIs (2x more than in 1.22!), more API arguments, couple of bugs fixed, and probably some new ones introduced as well .

http://www.kakeeware.com/i_kam.php

Enjoy!
A.

p.s. no idea about running it on Vista issues as I don't have this OS installed on my machine (and I don't plan to have it anytime soon

omega_red
April 22nd, 2007, 04:50
Still doesn't work on win x64
Otherwise seems nice. My evil code ran fine under KAM (xp 32bit), no other apimon managed that
No APIs were recorded except KERNEL32's own SetUnhandledExceptionFilter though (even without api call protection, weird).

dELTA
April 23rd, 2007, 00:50
Nice, keep up the good work!

lcx2005
May 5th, 2007, 00:52
Cool!!! Im happy to see the new version. Good work

rendari
May 7th, 2007, 15:26
Love this tool. Thanks

KaKeeware
May 19th, 2007, 17:45
Hi Guys,

Thanks for the comments...

> p.s. no idea about running it on Vista issues
> as I don't have this OS installed on my machine
> (and I don't plan to have it anytime soon

well, it should be fixed now - I tested it on Vista in my office and it seems to work perfectly now.

Get version 1.31 from

http://www.kakeeware.com/i_kam.php

Enjoy!
A.

seven
June 4th, 2007, 09:30
i love it , pretty tool , thanx

lcx2005
July 3rd, 2007, 06:11
Im happy to see the new version 1.31 , but Mcafee (from other machine)detect New Malware.aj in it, I don know where this trojan came, I mean from the owner site, (since it is in exe file), or from my computer. I currently use Symantec, and Symantec did not complain besides this Mcafee cannot clean the trojan code.

If it is intended, then

Sorry to use the old thread.

Silkut
July 3rd, 2007, 06:38
I'm sure it's not intended. Did you submitted the binary file to multiple scan ? This could be a false positive regarding to any home packer or similar.

lcx2005
July 3rd, 2007, 06:44
Thanx, i download it again and test with others av.

KaKeeware
July 3rd, 2007, 14:10
check if the md5 of your kam.exe is the same as the latest kam.exe from my web site. It should be 4FAFBED39BCF3758105F356F0F27841B.

if the md5s are different, your file is infected
if the md5s are the same - it's likely to be FP on AV side

A.

LLXX
July 3rd, 2007, 21:12
Quote:
A-Squared Found nothing
AntiVir Found nothing
ArcaVir Found Heur.Win32
Avast Found nothing
AVG Antivirus Found nothing
BitDefender Found nothing
ClamAV Found nothing
Dr.Web Found nothing
F-Prot Antivirus Found nothing
F-Secure Anti-Virus Found nothing
Fortinet Found nothing
Kaspersky Anti-Virus Found nothing
NOD32 Found nothing
Norman Virus Control Found W32/Suspicious_U.gen
Panda Antivirus Found nothing
Rising Antivirus Found nothing
VirusBuster Found Packed/Upack <-- a packer is malicious? lol wut?
VBA32 Found nothing
Upon manual inspection in a text editor it seems that some antivirus software throw fits over modified PE headers and little-known packers. As the three results above come from AV software I would never consider using at all, I think this is a false positive.

-- I am not affiliated with the author of KAM in any way.

disavowed
July 3rd, 2007, 23:14
Quote:
[Originally Posted by LLXX;66913]VirusBuster Found Packed/Upack <-- a packer is malicious? lol wut?

And people wonder why some AV engines have 99% detection rates...

lcx2005
July 4th, 2007, 06:14
The error is from AV side,and the Original Kam.exe is clean.
If u dont mind, how about distributed in zip/rar,than exe, since exe format is easy to infect.

Anyway thanks, I love it.

Sorry for the trouble.

KaKeeware
July 4th, 2007, 14:54
> rar/zip
you will need to unpack the executable to use it, so your AV program may "detect it" the first moment the file is created

I guess I will need to consider using other packer to solve the issue.

LLXX
July 4th, 2007, 15:37
Don't change packers, unless you can find a more efficient one.

WinUpack is currently one of the best...

lcx2005
July 8th, 2007, 00:12
I only want to protect great tools/utility. If the current packer is good enough for virus,etc attack (while it sits on the owner site).then no need to make change.

I hope u understand how it feels like,if you download an infected file from the owner site . But i confirmed(by taking ur advice ), kam is not infected/or modify by some malicious code and is in original form. Thank you.