SABnzbd Forums

Hi guys,

I've got an odd one.

I've got Sonarr downloading the anime "Tower of God", even though the file inside contains a (presumably malicious) exe.

My settings include exe in unwanted extensions, and it certainly works with things from app categories, but for some reason it's allowing this one through.

The full file name in this case is: "[HorribleSubs] Tower of God - 12 [1080p].mkv.exe" (there have been others of different episodes, obviously a malicious bot).

Just curious as to what I'd be able to do, or if this is a bug within Sab.

Running Sab on Docker, latest linuxserver version.

Maybe you can share the NZB here (since it's a fake anyway)?
Put spaces in the URL to avoid the "not allowed to post urls" detection.

Sure thing!

In case you guys aren't signed up to drunkenslug etc, I've put it on my dropbox for easier access.

https : // www . dropbox . com /s/iwh6ai72c6q35dr/%5BHorribleSubs%5D_Tower_of_God__-__12_%5B1080p%5D .nzb?dl=0

But if you are and feel more comfortable doing so:

https : // drunkenslug .com /details/aa81d86862627e4cc9f49d412abd357aac81404e

Ah ... https://www.dropbox.com/s/iwh6ai72c6q35 ... D.nzb?dl=0 ... the exe is in plain sight as file in the NZB. Not hidden somewhere in the rar's, for which I once programmed that feature Unwanted Extensions.

This could/should be handled at the moment of importing the NZB, @safihre ... ? Using the same extension list that's already there?

Agreed!
Created a feature request:
https://github.com/sabnzbd/sabnzbd/issues/1513

@modem7 It is fixed now in the SABnzbd github version, see https://github.com/sabnzbd/sabnzbd/pull/1515

The next release of SABnzbd will contain the fix.

Thanks for reporting and providing the NZB.