« previous next »
Pages: [1]   Go Down

Author Topic: Avast failing to detect rapidly spreading virus  (Read 1643 times)

0 Members and 1 Guest are viewing this topic.

Offline dean86

  • Newbie
  • *
  • Posts: 3
Avast failing to detect rapidly spreading virus
« on: June 05, 2019, 01:48:28 AM »
I have been an Avast user for years at my business and my home and I've always felt well-protected. However, you have been failing to detect a virus (JS/Agent.OCJ) for over 2 weeks now that has been spreading across the Internet like crazy (see https://www.zdnet.com/article/hackers-are-collecting-payment-details-user-passwords-from-4600-sites/). I have left multiple copies using your form but still it goes undetected. Please add the current version of this to your virus definitions.

Thanks,

D
Logged

Offline Pondus

  • Probably Bot
  • ****
  • Posts: 37534
  • Not a avast user
Re: Avast failing to detect rapidly spreading virus
« Reply #1 on: June 05, 2019, 07:33:36 AM »
« Last Edit: June 05, 2019, 07:43:25 AM by Pondus »
Logged

Offline dean86

  • Newbie
  • *
  • Posts: 3
Re: Avast failing to detect rapidly spreading virus
« Reply #2 on: June 05, 2019, 09:15:10 AM »
Only 5 detected it. They have done some clever obfuscation by using an md5 hash (I think) for all the data and including this in byte definitions.

https://www.virustotal.com/gui/file/ca91df659056e1c3e52cd88e4f2ac43917a92240c390bd2418f5497a0389ad23/detection

D
Logged

Offline Asyn

  • Avast Überevangelist
  • Certainly Bot
  • *****
  • Posts: 76037
    • >>> Avast Forum - Deutschsprachiger Bereich <<<
Re: Avast failing to detect rapidly spreading virus
« Reply #3 on: June 05, 2019, 09:18:22 AM »
Hi, I forwarded it - hope that will speed things up.
Logged
W8.1 [x64] - Avast Free AV 23.3.8047.BC [UI.757] - Firefox ESR 102.9 [NS/uBO/PB] - Thunderbird 102.9.1
Avast-Tools: Secure Browser 109.0 - Cleanup 23.1 - SecureLine 5.18 - DriverUpdater 23.1 - CCleaner 6.01
Avast Wissenswertes (Downloads, Anleitungen & Infos): https://forum.avast.com/index.php?topic=60523.0

Offline Pondus

  • Probably Bot
  • ****
  • Posts: 37534
  • Not a avast user
Re: Avast failing to detect rapidly spreading virus
« Reply #4 on: June 05, 2019, 09:27:58 AM »
Quote from: dean86 on June 05, 2019, 09:15:10 AM
Only 5 detected it. They have done some clever obfuscation by using an md5 hash (I think) for all the data and including this in byte definitions.

https://www.virustotal.com/gui/file/ca91df659056e1c3e52cd88e4f2ac43917a92240c390bd2418f5497a0389ad23/detection

D
obfuscation is in the script writing

you can see pic here of obfuscated and decoded js script
https://gist.github.com/gwillem/866af760afcef583ebed23948cbbc589

Logged

Offline dean86

  • Newbie
  • *
  • Posts: 3
Re: Avast failing to detect rapidly spreading virus
« Reply #5 on: June 05, 2019, 09:43:05 AM »
That makes it a lot more clear. Thanks for pushing this through. They are loading this onto thousands of servers so I can't imagine the number of users that are getting infected and with such a low detection rate there is a lot of illegal activity going on with the data they are gathering so Avast can make a big difference.

Thanks!

D
Logged

Offline Asyn

  • Avast Überevangelist
  • Certainly Bot
  • *****
  • Posts: 76037
    • >>> Avast Forum - Deutschsprachiger Bereich <<<
Re: Avast failing to detect rapidly spreading virus
« Reply #6 on: June 06, 2019, 07:17:43 AM »
Logged
W8.1 [x64] - Avast Free AV 23.3.8047.BC [UI.757] - Firefox ESR 102.9 [NS/uBO/PB] - Thunderbird 102.9.1
Avast-Tools: Secure Browser 109.0 - Cleanup 23.1 - SecureLine 5.18 - DriverUpdater 23.1 - CCleaner 6.01
Avast Wissenswertes (Downloads, Anleitungen & Infos): https://forum.avast.com/index.php?topic=60523.0
Pages: [1]   Go Up
« previous next »