MediCat Installer - Made by MON5TERMATT

MediCat Installer - Made by MON5TERMATT 2022-10-28

Download
Overview Updates (4) Reviews (7) History
Latest Rating
AppleMango
on screen instructions are bad. leads you to believe it can download the files on its own but it can't.
Jayro
Jayro
Yes it can, you just need to have PowerShell installed on your system. Please come to the Discord with any issues before leaving a nonsensically bad review.
Dr-Ne0Gen3tic
Kudos to the developers! A nice "little" script, that must have been quite a lot of work to code this, thanks for providing it! I'm glad to have found such a great script here! This is already, a completely different league than "Sergei Strelec" or the "Hirens Boot CD" series! This one is "the Next Level!"

P.S
The "False-Positive" finding, probably comes (at the EXE file, which was distributed here before) because, it is (as I think) an "EXE" file, which was created from a "Bat" file with a "Bat to EXE" converter. (Please tell me if I am wrong). If, here it was packed with "UPX" (similar to 7-ZIP), it makes the false positive problem even worse. Because malware is often packed with UPX, because the packer supports encryption and encrypted archives or packed files escape the eye of a virus scanner. So most scanners (also Virustotal counts to it) recognize simply, everything, which was packed with UPX as malicious files. This is one reason why virus scanners are no longer the first choice, as in the 90s ...
C
I could very well be doing something wrong, but I ran the executable and here's what I get:

The term 'Invoke-WebRequest' is not recognized as the name of a cmdlet, function, script file, or o
perable program. Check the spelling of the name, or if a path was included, verify that the path is
correct and try again.
At line:1 char:18
+ Invoke-WebRequest <<<< -Uri 'DEFAULT' -
OutFile './MEDICAT_NEW.EXE'
+ CategoryInfo : ObjectNotFound: (Invoke-WebRequest:String) [], CommandNotFoundExcept
ion
+ FullyQualifiedErrorId : CommandNotFoundException

The term 'Invoke-WebRequest' is not recognized as the name of a cmdlet, function, script file, or o
perable program. Check the spelling of the name, or if a path was included, verify that the path is
correct and try again.
At line:1 char:18
+ Invoke-WebRequest <<<< -Uri 'DEFAULT' -OutFile './u
pdate.bat'
+ CategoryInfo : ObjectNotFound: (Invoke-WebRequest:String) [], CommandNotFoundExcept
ion
+ FullyQualifiedErrorId : CommandNotFoundException
Jayro
Jayro
Please bring this to Matt's attention in the Discord, so he can help you. https://discord.gg/hZWkufx3ye
FatEminem
Alright, it does give you a virus warning with Windows Defender but after looking around for a bit it turns out it is a false positive. PowerShell commands are known as cmdlets which you can use to execute and even automate system-level tasks (which is the case here since it is automating the download & install process).
MON5TERMATT
https://youtu.be/Zid1dff25bg

Also the code is public.
GEROME34
This tool beats the hell out other tools i don't find the reason for it being a false positive by some people I find rather common sense and knowledge is missing here :).
EpicLPer
This is being detected as Malware by various different scan engines on VirusTotal. I also doubt it's a simple false positive, a simple script with built in Torrent downloader should not be detected as such.
Jayro
Jayro
It's because it calls PowerShell. Please don't rate the installer poorly just because you don't understand why it's being flagged as a false positive.
General chit-chat
Help Users
  • No one is chatting at the moment.
    K3N1 @ K3N1: Seems like a gay salad