Both chips have an external SPI Flash option, which is used with the USB side to present a ‘virtual CD drive’ to the user when the dongle is plugged in.
Ah, the bad old days of device drivers. I don’t miss them at all.
Investigating USB-to-Ethernet Dongles With “Malware” Claims
Submitted 3 months ago by cm0002@lemmy.world to cybersecurity@infosec.pub
https://hackaday.com/2025/01/18/investigating-usb-to-ethernet-dongles-with-malware-claims/
Comments
catloaf@lemm.ee 3 months ago
slazer2au@lemmy.world 3 months ago
TL;DR
It’s not malware. The sandboxes flagging this as malware are doing it because the dongle is installing a driver. Like it should do.
Erik Parker did a vidoe reverse engineering the installer and shows the driver doing what it should.
www.youtube.com/watch?v=GY87l_uSIuA
Steamymoomilk@sh.itjust.works 3 months ago
Awwwwh no funny red head dancing man on my computer?? :(