How is this thread useless? He wants to know stuff that can be done with a hex editor.
One thing is figuring out what part of an EXE is being detected by antivirus. AV detect viruses using known strings, so if you can change that one little bit of the file it'll be hidden. Here's a way to find that detection string:
-Turn off AV.
-Take a hex editor and split the EXE in chunks, save each chunk. I think there are programs to split for you.
-Scan each chunk
-Whatever segment is detected has the detected code. If no piece is detected then you split right at the detection string. If multiple pieces are detected then there are multiple detection strings.
-Keep on splitting the detected piece until you get something small, usally 1-4 lines of hex
Now the old trick for making EXEs undetected. In the hex editor, take some of the letters and change the case. If there's an "A" make it "a", "x" becomes "X". Do this for a couple letters. Save and run the file. If it runs, scan it. It should be undetected. If it doesn't run or if detected then change different letters.
Quite old but always fun.
