Author Topic: Samples missed by avast (VirusTotal links only!)  (Read 373207 times)

0 Members and 1 Guest are viewing this topic.

Offline polonus

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 33522
  • malware fighter
Re: Samples missed by avast (VirusTotal links only!)
« Reply #855 on: October 27, 2012, 12:29:48 AM »
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!

Offline polonus

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 33522
  • malware fighter
« Last Edit: October 30, 2012, 12:31:48 PM by polonus »
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!

Offline polonus

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 33522
  • malware fighter
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!

true indian

  • Guest
Re: Samples missed by avast (VirusTotal links only!)
« Reply #858 on: October 30, 2012, 05:49:43 PM »
Not detected? http://zulu.zscaler.com/submission/show/59273a77959881472c65c7243ccb05e7-1351595253
see: https://www.virustotal.com/file/776303a0a9794f0abc8696c395892d84de37b050c5adb76e2f7fe64f594090e1/analysis/
alive and OVERDUE 2012-08-23 12:11:59
New analysis report to be found here: http://anubis.iseclab.org/?action=result&task_id=1d980218979be3ed4452737f984e83694&format=html
reported to virus AT avast dot com

polonus

First seen by VirusTotal
2009-12-15 14:10:46 UTC ( 2 years, 10 months ago )

Quote
Emsisof: Riskware.Keygen.WinRAR (A)

Still in question for avast analysts if its to be detected or left alone.We may even have sandbox detection

true indian

  • Guest
Re: Samples missed by avast (VirusTotal links only!)
« Reply #859 on: November 05, 2012, 06:19:52 AM »
Trojan.GBPBoot.1 new MBR infector  :o

http://news.drweb.com/show/?lng=ru&i=2927&c=9

Reported to virus AT avast DOT com  8)

true indian

  • Guest

true indian

  • Guest
Re: Samples missed by avast (VirusTotal links only!)
« Reply #861 on: November 08, 2012, 04:47:22 PM »
See: https://www.virustotal.com/file/be37b9b39f41510e4941e63528bf6e96/analysis/
Malware still alive: http://malc0de.com/database/index.php?search=filepop.co.kr%2Fdown_fs%2F00000001_fsetup_703_20.exe%09

should this be detected is the question:
First seen by VirusTotal
2011-05-31 09:56:00 UTC ( 1 year, 5 months ago )

Spreading via IP: hxtp://211.215.18.239/ which is being blocked by MBAM IP Blocker!!!

Reported all the discovered URL's to virus AT avast DOT com
« Last Edit: November 08, 2012, 04:48:58 PM by true indian »

Offline polonus

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 33522
  • malware fighter
Re: Samples missed by avast (VirusTotal links only!)
« Reply #862 on: November 10, 2012, 04:48:50 PM »
See:https://www.virustotal.com/file/214713c0f6d00003fdbac583cc585fd6ce8256f2cdc3da43cf29bbe496cf180a/analysis/
&
http://minotauranalysis.com/search.aspx?q=8fa6c23df708ae478322bf3c17921917

polonus
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!

true indian

  • Guest
« Last Edit: November 14, 2012, 04:26:45 PM by true indian »

true indian

  • Guest
Re: Samples missed by avast (VirusTotal links only!)
« Reply #864 on: November 13, 2012, 03:40:50 PM »
Backdoor:Java/Jacksbot.A    :o

EDIT: VT link removed..

reported to virus AT Avast DOT com
« Last Edit: November 15, 2012, 07:20:32 AM by true indian »

true indian

  • Guest
Re: Samples missed by avast (VirusTotal links only!)
« Reply #865 on: November 20, 2012, 07:41:19 AM »

Offline polonus

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 33522
  • malware fighter
Re: Samples missed by avast (VirusTotal links only!)
« Reply #866 on: November 20, 2012, 01:15:10 PM »
Hi true indian,

Was not this posted by your alter ego? http://forums.malwarebytes.org/index.php?showtopic=118370

polonus
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!

true indian

  • Guest

Offline !Donovan

  • Web Analyst
  • Avast Evangelist
  • Super Poster
  • ***
  • Posts: 2219
    • The WAR Against Malware
« Last Edit: December 05, 2012, 11:52:12 PM by !Donovan »
Familiarize Yourself! | Educate Yourself! | Beautify Yourself! | Scan Yourself!
"People who say it cannot be done should not interrupt those who are doing it."

Offline Tonanet

  • Sr. Member
  • ****
  • Posts: 353
  • I'm a llama!
Re: Samples missed by avast (VirusTotal links only!)
« Reply #869 on: December 06, 2012, 10:09:49 AM »
Hello,

I have submitted the file bellow 3 times to avast, however it still not being detected:

 https://www.virustotal.com/file/27947b0c0acc357a8637f7d0d3dc27119bcf4fa3e68b07d2b3cf8e49c083db60/analysis/1354784726/

Thanks for your time!