Advice Request Comodo Firewall component being ignored

[ForgottenSeer 100397]

@Shadowra How did you get the malware pack on the VM in the Comodo test? And is it workable for you or @cruelsister to test the specific malware that encrypted data with Comodo defaults?

 

[Shadowra]

@Shadowra How did you get the malware pack on the VM in the Comodo test? And is it workable for you or @cruelsister to test the specific malware that encrypted data with Comodo defaults?

The packs, I don't give my 1st source for security reasons. And the 2nd source is personal to me either I go to a site hosting them, or when I don't have what I want, I connect to a server I created that gets me 0-day samples

Concerning the malware that encrypted, you have to know that I made the test 1 month ago but I delayed to upload it for work reasons and lack of time... At the time of writing, Comodo must have made a detection because I always send the undetected malware to the editors after the test

 

[ForgottenSeer 100397]

I meant how you copied the malware package. Look here: Video Review - Comodo Internet Security Premium Free 2023

 

[Shadowra]

I meant how you copied the malware package. Look here: Video Review - Comodo Internet Security Premium Free 2023

I answer you

Video Review - Comodo Internet Security Premium Free 2023

"The big problem with Comodo is its anti-malware engine which is for me the BADGEST I've ever tested!" Because you did not zoner/zillya/protegent :ROFLMAO: :ROFLMAO: :ROFLMAO:

malwaretips.com

 

[cruelsister]

@Shadowra How did you get the malware pack on the VM in the Comodo test? And is it workable for you or @cruelsister to test the specific malware that encrypted data with Comodo defaults?

The ransomware seen in the video was a HydraCrypt (think Chaos). As I'm not doing a video myself this week I'll use some time to find the specific file in the pack (if possible). As to the system BSOD there are indeed ways to screw with a sandbox to crash them (like recent data stealers spawning a daughter that will expand to ~800MB crashing SBIE).

As this has spun me off into a tangent, iI'll see if I can replicate by a few tricks and if so post back.

 

[ForgottenSeer 100397]

The ransomware seen in the video was a HydraCrypt (think Chaos). As I'm not doing a video myself this week I'll use some time to find the specific file in the pack (if possible). As to the system BSOD there are indeed ways to screw with a sandbox to crash them (like recent data stealers spawning a daughter that will expand to ~800MB crashing SBIE).

As this has spun me off into a tangent, iI'll see if I can replicate by a few tricks and if so post back.

By the way, doesn't Comodo, by default, exclude the "Downloads" folder? The contained malware can modify or infect the files in the downloads folder.