When a document or picture gets infected, does its file type change? [duplicate]





.everyoneloves__top-leaderboard:empty,.everyoneloves__mid-leaderboard:empty,.everyoneloves__bot-mid-leaderboard:empty{ margin-bottom:0;
}







-4
















This question already has an answer here:




  • What is the relationship between MIME types and File .extensions?

    3 answers




I know infected documents in windows have file extension of .pdf.exe or .jpg.exe .
Can you infect a file without changing extension?
Is it the same in linux?






malware







share|improve this question













marked as duplicate by karel, user68186, Pilot6, DK Bose, N0rbert Feb 11 at 20:17


This question has been asked before and already has an answer. If those answers do not fully address your question, please ask a new question.














  • 1





    Strictly there is no extension in posix/unix/linux (including osx). The '.pdf' at the end of the file is just the end-part of the filename. A file's data itself provides the clue as to what's in the file, not the name. You can file filespec to have the system peek inside the file 'filespec' & it'll respond with the type of file.

    – guiverc
    Feb 11 at 11:26











  • If you are able to detect at all that a document or picture is infected, then the workmanship seems poor. Well-made malware can be very, very difficult to detect.

    – user535733
    Feb 11 at 12:48




















-4
















This question already has an answer here:




  • What is the relationship between MIME types and File .extensions?

    3 answers




I know infected documents in windows have file extension of .pdf.exe or .jpg.exe .
Can you infect a file without changing extension?
Is it the same in linux?






malware







share|improve this question













marked as duplicate by karel, user68186, Pilot6, DK Bose, N0rbert Feb 11 at 20:17


This question has been asked before and already has an answer. If those answers do not fully address your question, please ask a new question.














  • 1





    Strictly there is no extension in posix/unix/linux (including osx). The '.pdf' at the end of the file is just the end-part of the filename. A file's data itself provides the clue as to what's in the file, not the name. You can file filespec to have the system peek inside the file 'filespec' & it'll respond with the type of file.

    – guiverc
    Feb 11 at 11:26











  • If you are able to detect at all that a document or picture is infected, then the workmanship seems poor. Well-made malware can be very, very difficult to detect.

    – user535733
    Feb 11 at 12:48
















-4












-4








-4









This question already has an answer here:




  • What is the relationship between MIME types and File .extensions?

    3 answers




I know infected documents in windows have file extension of .pdf.exe or .jpg.exe .
Can you infect a file without changing extension?
Is it the same in linux?






malware







share|improve this question















This question already has an answer here:




  • What is the relationship between MIME types and File .extensions?

    3 answers




I know infected documents in windows have file extension of .pdf.exe or .jpg.exe .
Can you infect a file without changing extension?
Is it the same in linux?





This question already has an answer here:




  • What is the relationship between MIME types and File .extensions?

    3 answers







malware




malware






share|improve this question













share|improve this question











share|improve this question




share|improve this question










asked Feb 11 at 11:19









Linux_user0987Linux_user0987

15




15




marked as duplicate by karel, user68186, Pilot6, DK Bose, N0rbert Feb 11 at 20:17


This question has been asked before and already has an answer. If those answers do not fully address your question, please ask a new question.









marked as duplicate by karel, user68186, Pilot6, DK Bose, N0rbert Feb 11 at 20:17


This question has been asked before and already has an answer. If those answers do not fully address your question, please ask a new question.










  • 1





    Strictly there is no extension in posix/unix/linux (including osx). The '.pdf' at the end of the file is just the end-part of the filename. A file's data itself provides the clue as to what's in the file, not the name. You can file filespec to have the system peek inside the file 'filespec' & it'll respond with the type of file.

    – guiverc
    Feb 11 at 11:26











  • If you are able to detect at all that a document or picture is infected, then the workmanship seems poor. Well-made malware can be very, very difficult to detect.

    – user535733
    Feb 11 at 12:48
















  • 1





    Strictly there is no extension in posix/unix/linux (including osx). The '.pdf' at the end of the file is just the end-part of the filename. A file's data itself provides the clue as to what's in the file, not the name. You can file filespec to have the system peek inside the file 'filespec' & it'll respond with the type of file.

    – guiverc
    Feb 11 at 11:26











  • If you are able to detect at all that a document or picture is infected, then the workmanship seems poor. Well-made malware can be very, very difficult to detect.

    – user535733
    Feb 11 at 12:48










1




1





Strictly there is no extension in posix/unix/linux (including osx). The '.pdf' at the end of the file is just the end-part of the filename. A file's data itself provides the clue as to what's in the file, not the name. You can file filespec to have the system peek inside the file 'filespec' & it'll respond with the type of file.

– guiverc
Feb 11 at 11:26





Strictly there is no extension in posix/unix/linux (including osx). The '.pdf' at the end of the file is just the end-part of the filename. A file's data itself provides the clue as to what's in the file, not the name. You can file filespec to have the system peek inside the file 'filespec' & it'll respond with the type of file.

– guiverc
Feb 11 at 11:26













If you are able to detect at all that a document or picture is infected, then the workmanship seems poor. Well-made malware can be very, very difficult to detect.

– user535733
Feb 11 at 12:48







If you are able to detect at all that a document or picture is infected, then the workmanship seems poor. Well-made malware can be very, very difficult to detect.

– user535733
Feb 11 at 12:48












1 Answer
1






active

oldest

votes


















1














Those "infected documents" aren't and never have been documents. They are executable files, just like any other app on your computer. However they appear as documents at first glance on a system which does not show file extensions.



As guiverc pointed out, file extensions usually don't mean much on Linux.



Real infected documents use exploits and weaknesses either in the file format itself or the software that the file is opened with. PDFs can have attachments from which an attack can be launched. A quick Google search yielded this page which explains this attack vector: https://leotindall.com/post/pdf-embedding-attacks/






share|improve this answer






























    1 Answer
    1






    active

    oldest

    votes








    1 Answer
    1






    active

    oldest

    votes









    active

    oldest

    votes






    active

    oldest

    votes









    1














    Those "infected documents" aren't and never have been documents. They are executable files, just like any other app on your computer. However they appear as documents at first glance on a system which does not show file extensions.



    As guiverc pointed out, file extensions usually don't mean much on Linux.



    Real infected documents use exploits and weaknesses either in the file format itself or the software that the file is opened with. PDFs can have attachments from which an attack can be launched. A quick Google search yielded this page which explains this attack vector: https://leotindall.com/post/pdf-embedding-attacks/






    share|improve this answer




























      1














      Those "infected documents" aren't and never have been documents. They are executable files, just like any other app on your computer. However they appear as documents at first glance on a system which does not show file extensions.



      As guiverc pointed out, file extensions usually don't mean much on Linux.



      Real infected documents use exploits and weaknesses either in the file format itself or the software that the file is opened with. PDFs can have attachments from which an attack can be launched. A quick Google search yielded this page which explains this attack vector: https://leotindall.com/post/pdf-embedding-attacks/






      share|improve this answer


























        1












        1








        1







        Those "infected documents" aren't and never have been documents. They are executable files, just like any other app on your computer. However they appear as documents at first glance on a system which does not show file extensions.



        As guiverc pointed out, file extensions usually don't mean much on Linux.



        Real infected documents use exploits and weaknesses either in the file format itself or the software that the file is opened with. PDFs can have attachments from which an attack can be launched. A quick Google search yielded this page which explains this attack vector: https://leotindall.com/post/pdf-embedding-attacks/






        share|improve this answer













        Those "infected documents" aren't and never have been documents. They are executable files, just like any other app on your computer. However they appear as documents at first glance on a system which does not show file extensions.



        As guiverc pointed out, file extensions usually don't mean much on Linux.



        Real infected documents use exploits and weaknesses either in the file format itself or the software that the file is opened with. PDFs can have attachments from which an attack can be launched. A quick Google search yielded this page which explains this attack vector: https://leotindall.com/post/pdf-embedding-attacks/







        share|improve this answer












        share|improve this answer



        share|improve this answer










        answered Feb 11 at 13:21









        Kumpel GrasKumpel Gras

        265




        265















            -

            Popular posts from this blog

            Human spaceflight

            Image
            Human spaceflight From Wikipedia, the free encyclopedia Jump to navigation Jump to search "Space traveler" redirects here. For other uses, see Space traveler (disambiguation). @media all and (max-width:720px){.mw-parser-output .tmulti>.thumbinner{width:100%!important;max-width:none!important}.mw-parser-output .tmulti .tsingle{float:none!important;max-width:none!important;width:100%!important;text-align:center}} Apollo 11 crewmember Buzz Aldrin on the Moon, 1969 International Space Station crewmember Tracy Caldwell Dyson views the Earth, 2010 Space Shuttle Discovery heads into space with a crew aboard, STS-121 in 2006 Inside a space suit on the Canadarm, 1993 Human spaceflight (also referred to as crewed spaceflight or manned spaceflight ) is space travel with a crew or passengers aboard the spacecraft. Spacecraft carrying people may be operated directly, by human crew, or it may be e
            Read more

            Can not write log (Is /dev/pts mounted?) - openpty in Ubuntu-on-Windows?

            Image
            0 1 What exactly does the error message beginning with E: mean? I assume it has to do with the file structure on Ubuntu-on-Windows, but what exactly? The following package was automatically installed and is no longer required: os-prober Use 'apt-get autoremove' to remove it. The following extra packages will be installed: libxslt1.1 The following NEW packages will be installed: libxslt1.1 xmlstarlet 0 upgraded, 2 newly installed, 0 to remove and 0 not upgraded. Need to get 435 kB of archives. After this operation, 1023 kB of additional disk space will be used. Get:1 http://archive.ubuntu.com/ubuntu/ trusty/main libxslt1.1 amd64 1.1.28-2build1 [145 kB] Get:2 http://archive.ubuntu.com/ubuntu/ trusty/universe xmlstarlet amd64 1.5.0-1 [290 kB]
            Read more

            File:DeusFollowingSea.jpg

            Image
            File:DeusFollowingSea.jpg From Wikipedia, the free encyclopedia Jump to navigation Jump to search File File history File usage No higher resolution available. DeusFollowingSea.jpg ‎ (238 × 211 pixels, file size: 12 KB, MIME type: image/jpeg ) Summary [ edit ] Media data and Non-free use rationale Description Cover art of the Deus CD Following Sea Author or copyright owner Deus Source (WP:NFCC#4) rocksucker.co.uk Date of publication 2012 Use in article (WP:NFCC#7) Following Sea Purpose of use in article (WP:NFCC#8) to serve as the primary means of visual identification at the top of the article dedicated to the work in question. Not replaceable with free media because (WP:NFCC#1) n.a. Minimal use (WP:NFCC#3) Low res image used in infobox of the article on the album Respect for commercial opportunities (WP:NFCC#2) n.a. Fair use Fair use of co
            Read more