A cross-platform, multi-threaded malware scanner that performs MD5-based signature detection against a configurable hash database.
- Cross-Platform Support: Windows, Linux, and macOS compatibility
- Multi-Threading: Utilizes all available CPU cores for parallel file processing
- Priority-Based Scanning: Smart file prioritization system based on file extensions
- Comprehensive Logging: Detailed CSV-based logging with timestamps
- Memory Efficient: Optimized for large directory scans with minimal memory footprint
- Static Linking: Self-contained executables with minimal dependencies
The project is structured as a modular C++ application with the following components:
(Architecture details to be added)
- CMake: Version 3.16 or higher
- OpenSSL: For MD5 hash calculation
- GoogleTest: For testing
OpenSSL installation path: C:/OpenSSL-Win64/
mkdir build
cd build
cmake ..
makeKasperMini v2.2 (Windows)
Files processed: 542
Suspicious files: 1
Execution time: 2.34 seconds
Timestamp,FilePath,Hash,Verdict
2025-09-08 14:30:15,C:\temp\malware.exe,d41d8cd98f00b204e9800998ecf8427e,Trojan.GenericOriginally planned GPU-based MD5 calculation with the following logic:
If GPU is available:
- Files < 10MB: CPU processing
- Files 10-100MB: Single GPU processing
- Files > 100MB: Batch GPU processing