Avast WEBforum
Consumer Products => Avast Free Antivirus / Premium Security (legacy Pro Antivirus, Internet Security, Premier) => Beta - Avast => Topic started by: cristianojgm on April 24, 2022, 02:11:01 AM
-
As you can see in the video, both the behavior shield failed and the ransomware shield.
https://www.youtube.com/watch?v=wRK2L5Ooo4Y&t=531s
-
Hi,
In this test, one of the Shields was disabled. We recommend keeping the Core Shields enabled at all times.
-
Hi,
In this test, one of the Shields was disabled. We recommend keeping the Core Shields enabled at all times.
In this video here all modules are connected and the trojan server with code obfuscated by a cypter passed and the behavior shield did nothing.
https://www.youtube.com/watch?v=GFukUynoSjk
-
Hi,
In this test, one of the Shields was disabled. We recommend keeping the Core Shields enabled at all times.
Why does the same test on this YouTube channel (file protection off) with other AVs not encrypt the files? Avast Free still kept the behavioral shield and the ransoware shield active.
-
Hi,
If you could upload the problematic sample to https://virustotal.com/ and send us the link for the analysis, we would be able to look further into it.
-
Hi,
If you could upload the problematic sample to https://virustotal.com/ and send us the link for the analysis, we would be able to look further into it.
I didn't do the test. 🙂 I only saw this video and other videos on this YouTube channel.
-
Hi,
If you could upload the problematic sample to https://virustotal.com/ and send us the link for the analysis, we would be able to look further into it.
https://www.virustotal.com/gui/file/416235b085b6b86640cac3a78f0bd52583eed7154fc3666f5338bde96db10fab
-
Hi,
If you could upload the problematic sample to https://virustotal.com/ and send us the link for the analysis, we would be able to look further into it.
https://www.virustotal.com/gui/file/416235b085b6b86640cac3a78f0bd52583eed7154fc3666f5338bde96db10fab
<snip sample url>
Remove the link to malware sample to avoid accidental exposure and harvesting by others.
Virus total should send samples to those antivirus programs that don't detect it.
As r@vast said "and send us the link for the analysis" since you have posted the link to the analysis that should suffice. However in the VT results Avast is detecting this ?
-
Hi,
If you could upload the problematic sample to https://virustotal.com/ and send us the link for the analysis, we would be able to look further into it.
https://www.virustotal.com/gui/file/416235b085b6b86640cac3a78f0bd52583eed7154fc3666f5338bde96db10fab
<snip sample url>
Remove the link to malware sample to avoid accidental exposure and harvesting by others.
Virus total should send samples to those antivirus programs that don't detect it.
As r@vast said "and send us the link for the analysis" since you have posted the link to the analysis that should suffice. However in the VT results Avast is detecting this ?
Yes, avast detects it. What was shown in the video is the ransomware shield failure. If it didn't have a signature, the malware would have encrypted the files. This ransomware encrypts files by changing the extension. In this case, it disabled the file shield and left only the ramsoware shield, which in this particular malware failed to block it.
-
Hi,
If you could upload the problematic sample to https://virustotal.com/ and send us the link for the analysis, we would be able to look further into it.
https://www.virustotal.com/gui/file/416235b085b6b86640cac3a78f0bd52583eed7154fc3666f5338bde96db10fab
<snip sample url>
Remove the link to malware sample to avoid accidental exposure and harvesting by others.
Virus total should send samples to those antivirus programs that don't detect it.
As r@vast said "and send us the link for the analysis" since you have posted the link to the analysis that should suffice. However in the VT results Avast is detecting this ?
Yes, avast detects it. What was shown in the video is the ransomware shield failure. If it didn't have a signature, the malware would have encrypted the files. This ransomware encrypts files by changing the extension. In this case, it disabled the file shield and left only the ramsoware shield, which in this particular malware failed to block it.
The same thing happened to me with other ransoware too, but I don't have the samples to report.
It would be useful, if possible, to review the entire ransoware shield in the laboratory to reinforce it.
Thanks. ;)
-
Watch this video:
https://www.youtube.com/watch?v=jjfKZeKRpSI&t=153s
-
Watch this video: https://www.youtube.com/watch?v=jjfKZeKRpSI&t=153s
-> https://forum.avast.com/index.php?topic=319262.msg1686055#msg1686055
-
Look at this test:
https://www.youtube.com/watch?v=g8pVaKOOAc8
-
Look at this test:
https://www.youtube.com/watch?v=g8pVaKOOAc8 (https://www.youtube.com/watch?v=g8pVaKOOAc8)
Why not be guided and accept the tests performed by reputable and accredited testing sites?
-
But if there is a zero day attack in which a malware is not recognized by file protection, are the other shields able to protect the PC and data?
After this video I have some doubts ...
Does the ransoware shield protect the inserted folders in case of a zero-day attack?
-
:) I have been saved by Avast from Ransom attack about three times over March to May. I am very grateful.
-
Probably these tests that are made are not correct because the "file protection" module is disabled which also weakens the protection and reactions of the other protective modules.
But on this some Avast developer should express himself to have a technical confirmation and to reassure us. :)
-
Probably these tests that are made are not correct because the "file protection" module is disabled which also weakens the protection and reactions of the other protective modules.
But on this some Avast developer should express himself to have a technical confirmation and to reassure us. :)
Have you been infected? Why are you looking for assurance when you're not having any problems?
-
Probably these tests that are made are not correct because the "file protection" module is disabled which also weakens the protection and reactions of the other protective modules.
But on this some Avast developer should express himself to have a technical confirmation and to reassure us. :)
Have you been infected? Why are you looking for assurance when you're not having any problems?
Better safe than sorry ... or in any case be calmer if you use one safety product rather than another.
That's all.
-
Probably these tests that are made are not correct because the "file protection" module is disabled which also weakens the protection and reactions of the other protective modules.
But on this some Avast developer should express himself to have a technical confirmation and to reassure us. :)
Yesterday, 05/08/2022, I managed to find a zero day ransomware and tested it in a virtual machine with all modules active. The ransomware shield stopped malware and second behavior shield stopped it as well. It looks like the file module are linked to the other modules.
-
Probably these tests that are made are not correct because the "file protection" module is disabled which also weakens the protection and reactions of the other protective modules.
But on this some Avast developer should express himself to have a technical confirmation and to reassure us. :)
Yesterday, 05/08/2022, I managed to find a zero day ransomware and tested it in a virtual machine with all modules active. The ransomware shield stopped malware and second behavior shield stopped it as well. It looks like the file module are linked to the other modules.
Good news! Thanks :D
-
Look at this test.
Avast Premiun failed and the files were encrypted ;D ... while Avast One Free did not encrypt the files ... ???
The same malware was used:
https://www.youtube.com/watch?v=UZe-MVF4CHA
-
I think so
Avast Team also Should work for More STRONG Ransomware shield.
We deserve More Strong,More SECURITY