Two days ago Yandex.ru listed hexacorn.com as malicious.

It was the only URL checker that highlighted it as malicious, but being on such list is always a serious concern:

I checked the web site, compared with the older backups and I didn’t see anything wrong. I then dropped Yandex.ru guys an email, and looks like they fixed their listing  – testing with VirusTotal shows it is all good now:

Not sure what caused this, but well… it’s all about heuristics and they are sometimes wrong.

Good to see Yandex.ru guys reacted so quickly.

Thanks!

And just in case you are wondering what the title means, this should provide you a context:

And no, I am not suggesting there were any mines on Hexacorn. Like everything, context has its scope and err… context 🙂

Image sources:

http://www.gazeta.lv/photos/5/Mina_4.jpg

http://www.gazeta.lv/photos/5/Mina_3.jpg

http://www.gazeta.lv/photos/5/Mina_8.jpg

Over last few days Hexacorn blog has received quite a few good comments from various people who reached out to me personally and praised the content as well as provided suggestions on how to improve the usability and accessibility of the site. This is very encouraging and I would like to take this opportunity and thank you all for your compliments and constructive criticism.

I also want to include special thanks to Colin who wrote a very nice review of Hexacorn on his forensic blog. In my opinion Colin writes in a way that is unique in terms of quality – he makes an effort to research, understand and document everything he comes across while on the case – this makes for a great tutoring material. Second big thanks goes to Ange – he created a fantastic repository of everything RCE and Portable Executable-related (if you are into reversing and never visited his site you are in for a real treat) – Ange provided a really great feedback that made me re-think a few things and flip a few switches in the blog engine settings 🙂

Thanks!