Khushal
Level 2
- Apr 4, 2024
- 68
It's engine like Kaspersky is unable to deobfuscate the sample and identify the attack pattern.I think it is a bug, the lack of emulation report.
It's engine like Kaspersky is unable to deobfuscate the sample and identify the attack pattern.I think it is a bug, the lack of emulation report.
It doesn’t use Kaspersky.It's engine like Kaspersky is unable to deobfuscate the sample and identify the attack pattern.
I meant that like Kaspersky's engine it failed to understand disassembly of sample. I know it uses twin engine, it's own and Sophos. Btw Sophos has failed this test as well.It doesn’t use Kaspersky.
B.B. fails , BD engine heuristics detects it.Anyone can try Emsisoft?
Is the executable signed?B.B. fails , BD engine heuristics detects it.
They have added signature. I do appreciate their responsiveness whenever i send them the sample.Avast ignores it, AVG would likely do the same.
NahIs the executable signed?
I find this absurd. Emsisoft on my device generate an unacceptable number of FPs from BB and yet it failed this test. Nice.
Can you send me the ransom sample? PM me.i can send if you want.
me as well pleaseCan you send me the ransom sample? PM me.
Sophos has added signature.I meant that like Kaspersky's engine it failed to understand disassembly of sample. I know it uses twin engine, it's own and Sophos. Btw Sophos has failed this test as well.
View attachment 285239
View attachment 285240
@Trident @Shadowra @Khushal I have a theory about cloud based analyse;
As you can see, virustotal behavioral analyse cant analyse file because virus cant work if SmartAssembly not installed, then cloud based analyse can be late and if it's developed more or another way etc etc, Creating a virus that can make cloud-based analyse late and not need to another program to work can be possible.
Virus cant work without SmartAssembly so KSN cant run on their server so KSN Cant analyse or another cloud system.
I'm planning to move to McAfee once my Emsisoft license runs out. McAfee is too light and not bloated, even if the interface is cluttered, you only have a couple of process running in Task Manager.McAfee seems to have evolved a lot this last year or so. Mainly after they released their cloud version. I think they want to play with the big boys once more...
It has added detection few hours back. Here's the same old gibberish which i received on mail:Kaspersky Threat Intelligence Portal
Kaspersky Threat Intelligence Portal allows you to scan files, domains, IP addresses, and URLs for threats, malware, virusesopentip.kaspersky.com