Khushal
Level 2
- Apr 4, 2024
- 70
It's engine like Kaspersky is unable to deobfuscate the sample and identify the attack pattern.
Are antiviruses unimportant?
- Thread starter Dr. Wells
- Start date
- Feb 7, 2023
- 2,351
It doesn’t use Kaspersky.
Khushal
Level 2
- Apr 4, 2024
- 70
I meant that like Kaspersky's engine it failed to understand disassembly of sample. I know it uses twin engine, it's own and Sophos. Btw Sophos has failed this test as well.
- May 10, 2019
- 2,289
Khushal
Level 2
- Apr 4, 2024
- 70
B.B. fails , BD engine heuristics detects it.
- May 10, 2019
- 2,289
Khushal
Level 2
- Apr 4, 2024
- 70
They have added signature. I do appreciate their responsiveness whenever i send them the sample.
Khushal
Level 2
- Apr 4, 2024
- 70
- May 10, 2019
- 2,289
I find this absurd. Emsisoft on my device generate an unacceptable number of FPs from BB and yet it failed this test. Nice.
rashmi
Level 11
- Jan 15, 2024
- 536
Can you send me the ransom sample? PM me.
andytan
Level 1
- May 10, 2024
- 20
- Aug 27, 2024
- 38
I cant share anymore friends, sorry.
if mods allow me, i will share source code publicly.
if mods allow me, i will share source code publicly.
Khushal
Level 2
- Apr 4, 2024
- 70
Sophos has added signature.
- Aug 27, 2024
- 38
@Trident @Shadowra @Khushal I have a theory about cloud based analyse;
As you can see, virustotal behavioral analyse cant analyse file because virus cant work if SmartAssembly not installed, then cloud based analyse can be late and if it's developed more or another way etc etc, Creating a virus that can make cloud-based analyse late and not need to another program to work can be possible.
Virus cant work without SmartAssembly so KSN cant run on their server so KSN Cant analyse or another cloud system.
Khushal
Level 2
- Apr 4, 2024
- 70
Kaspersky Threat Intelligence Portal
Kaspersky Threat Intelligence Portal allows you to scan files, domains, IP addresses, and URLs for threats, malware, viruses
- May 3, 2015
- 1,739
McAfee seems to have evolved a lot this last year or so. Mainly after they released their cloud version. I think they want to play with the big boys once more...
- May 10, 2019
- 2,289
I'm planning to move to McAfee once my Emsisoft license runs out. McAfee is too light and not bloated, even if the interface is cluttered, you only have a couple of process running in Task Manager.
rashmi
Level 11
- Jan 15, 2024
- 536
The COMODO Firewall, The Deadpool of Cybersecurity, effortlessly contained it, with no antivirus swordplay necessary, ensuring RanSomWare RanNoWhere!
Khushal
Level 2
- Apr 4, 2024
- 70
It has added detection few hours back. Here's the same old gibberish which i received on mail:Kaspersky Threat Intelligence Portal
Kaspersky Threat Intelligence Portal allows you to scan files, domains, IP addresses, and URLs for threats, malware, virusesopentip.kaspersky.com
Hello,
New malicious software was found in the attached file. Its detection will be included in the next update.
Trojan-Ransom.MSIL.Agent
Thank you for your help.
Best regards, ____, Malware Analyst, Kaspersky
- Feb 25, 2017
- 2,584
Detected by Deep Instinct static analysis
Similar threads
