Author Topic: Samples missed by avast (VirusTotal links only!)  (Read 373745 times)

0 Members and 1 Guest are viewing this topic.

Offline DavidR

  • Avast Überevangelist
  • Certainly Bot
  • *****
  • Posts: 86939
  • No support PMs thanks
Re: Samples missed by avast (VirusTotal links only!)
« Reply #375 on: June 24, 2011, 05:47:15 PM »
Fake antivirus that are not detected by avast
<snip>

If you haven't already done so - Send the sample/s to avast as a Undetected Malware:
Open the chest and right click in the Chest and select Add, navigate to where you have the sample and add it to the chest (see image). Once in the chest, right click on the file and select 'Submit to virus lab...' complete the form and submit, the file will be uploaded during the next update. Note: manually adding to the chest doesn't remove them from the original location, so they still have to be dealt with in that location.
Or
Send the sample to virus (at) avast (dot) com zipped and password protected with the password in email body.
Windows 10 Home 64bit/ Acer Aspire F15/ Intel Core i5 7200U 2.5GHz, 8GB DDR4 memory, 256GB SSD, 1TB HDD/ avast! free 22.9.6034 (build 22.9.7554.734) UI 1.0.728/ Firefox, uBlock Origin, uMatrix/ MailWasher Pro/ Avast! Mobile Security

Offline Lisandro

  • Avast team
  • Certainly Bot
  • *
  • Posts: 67235
The best things in life are free.

Offline polonus

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 33528
  • malware fighter
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!

Offline Lisandro

  • Avast team
  • Certainly Bot
  • *
  • Posts: 67235
Re: Samples missed by avast (VirusTotal links only!)
« Reply #378 on: June 24, 2011, 10:55:29 PM »
Thanks Polonus. Just that browsing to learn about the software, I get the link for the malware :)
The best things in life are free.

Offline JuninhoSlo

  • Avast Evangelist
  • Advanced Poster
  • ***
  • Posts: 849


Offline polonus

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 33528
  • malware fighter
Re: Samples missed by avast (VirusTotal links only!)
« Reply #381 on: June 25, 2011, 08:32:38 PM »
Hi dirk0914,

This could be because the first mentioned malware is no longer online, see: http://anubis.iseclab.org/?action=result&task_id=1a04231d0da67a47471f1fea01df87605 which report was generated 2010-12-23 05:50:01

polonus
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!

Offline polonus

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 33528
  • malware fighter
Re: Samples missed by avast (VirusTotal links only!)
« Reply #382 on: June 25, 2011, 11:46:58 PM »
Detection missed by avast for MSIE ADODB.Stream Object File Installation Weakness attack,
VirTool:JS/Obfuscator.BN aka JS/Kryptik.AX
see VT scan results: http://www.virustotal.com/url-scan/report.html?id=aa04e02c6fa3b44f7a7dc063330d9ec7-1309030299
and
http://www.virustotal.com/file-scan/report.html?id=a42e2ac81838ff31355994d743e0a6510d9ae295634f208b83ec891def1b587b-1309037894

polonus
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!


esr30

  • Guest
Re: Samples missed by avast (VirusTotal links only!)
« Reply #384 on: June 27, 2011, 09:06:17 AM »
How do you go about sending files to avast?

Offline Asyn

  • Avast Überevangelist
  • Certainly Bot
  • *****
  • Posts: 76118
  • Urlaub/Vacation
    • >>>  Avast Forum - Deutschsprachiger Bereich  <<<
Re: Samples missed by avast (VirusTotal links only!)
« Reply #385 on: June 27, 2011, 09:18:11 AM »
How do you go about sending files to avast?

You can send samples from the chest.
Or send them compressed to: virus(at)avast.com
W8.1 [x64] - Avast PremSec 22.7.7366.BC [UI.713] - Firefox ESR 91.11 [NS/uBO/PB] - Thunderbird 91.11
Avast-Tools: Secure Browser 103.0 - Cleanup 22.2 - SecureLine 5.18 - DriverUpdater 22.2 - CCleaner 6.01
Avast Wissenswertes (Downloads, Anleitungen & Infos): https://forum.avast.com/index.php?topic=60523.0

esr30

  • Guest
Re: Samples missed by avast (VirusTotal links only!)
« Reply #386 on: June 27, 2011, 12:29:16 PM »
How do you go about sending files to avast?

You can send samples from the chest.
Or send them compressed to: virus(at)avast.com
Gmail won't let me send you the file.How do I upload the files to the virus chest?


Offline Asyn

  • Avast Überevangelist
  • Certainly Bot
  • *****
  • Posts: 76118
  • Urlaub/Vacation
    • >>>  Avast Forum - Deutschsprachiger Bereich  <<<
Re: Samples missed by avast (VirusTotal links only!)
« Reply #388 on: June 27, 2011, 01:37:47 PM »
Gmail won't let me send you the file.

Sorry, I forgot to mention that you should also password protect the file.
W8.1 [x64] - Avast PremSec 22.7.7366.BC [UI.713] - Firefox ESR 91.11 [NS/uBO/PB] - Thunderbird 91.11
Avast-Tools: Secure Browser 103.0 - Cleanup 22.2 - SecureLine 5.18 - DriverUpdater 22.2 - CCleaner 6.01
Avast Wissenswertes (Downloads, Anleitungen & Infos): https://forum.avast.com/index.php?topic=60523.0

Offline Lisandro

  • Avast team
  • Certainly Bot
  • *
  • Posts: 67235
Re: Samples missed by avast (VirusTotal links only!)
« Reply #389 on: June 27, 2011, 01:41:49 PM »
Sorry, I forgot to mention that you should also password protect the file.
If the user is making a .zip file, passworded or not, GMail will block.
You need to use .7z file (http://www.7-zip.org/).
The best things in life are free.