Trojan Not Detected by AVAST

[yy4]

Also, I think Avast should add a feature into the program to upload "false negatives" just like "false positives".

[Pondus]

Also, I think Avast should add a feature into the program to upload "false negatives" just like "false positives".

you can upload any file(s) detected or not detected from chest    




Moving files to the Virus Chest
http://support.avast.com/index.php?_m=knowledgebase&_a=viewarticle&kbarticleid=501#idt_03

Submitting files from the Virus Chest to avast! Virus Lab
http://support.avast.com/index.php?_m=knowledgebase&_a=viewarticle&kbarticleid=501#idt_07


or use the online form
http://www.avast.com/en-eu/contact-form.php?loadStyles



and last, the mail option.
Send sample in a password protected zip.file to  virus @ avast.com
Mail subject:  undetected sample or False positive
zip Password:  infected


use a zip program that also encrypt the content to avoid blocking from any scanner on mail server
winRAR or 7zip will do

[yy4]

Thanks, I forwarded the bait email to virus@avast.com if that helps.

[yy4]

UPDATE: Def file 120105-1 already detects it. report was based on 120104.

[Pondus]

the file is very new. First seen yesterday at VT

http://www.virustotal.com/file-scan/report.html?id=7963193981914b6002e66c660ec0f4b3498185292626502064bb3cfb4fd72b58-1325749954

[polonus]

Hi Pondus,

Here is the Sophos analysis of this Troj/Bredo-OG: http://www.sophos.com/en-us/threat-center/threat-analyses/viruses-and-spyware/Troj~Bredo-OG/detailed-analysis.aspx
This also known as Trojan.Tenagour.9 (DrWeb) and is Zeus related malware,

polonus