* Home Help Search Login Register  

Welcome, Guest. Please login or register.
Did you miss your activation email?
May 23, 2013, 11:32:46 AM

Login with username, password and session length

663770 Posts
70587 Topics
145223 Members
Latest Member: Leo40

more news...
Search:     Advanced search | Tag Cloud
+  Welcome to the Comodo Forum
|-+  Security Products & Services
| |-+  Comodo Instant Malware Analysis Online - CIMA
| | |-+  Why every submited sample doesn't go to AV Lab?		 « previous next »
Pages: [1] Go Down Print
Author Topic: Why every submited sample doesn't go to AV Lab?  (Read 5229 times)
gjmveloso
Malware Research Group
Comodo Loves me
*****
Offline Offline

Posts: 166
« on: January 25, 2009, 06:58:21 PM »
Many virus hunters that doesn't use CIS uses CIMA as one of the online tools available to "research" malware itself.

Because of this COMODO can use this community-powered tool to improve your AV detection rates and sent all samples submitted from CIMA to AV Lab (as a malwaresubmit[at]avlab.comodo.com e-mail...).

I currently sent all samples that I discovered to CIMA and VirusTotal only, no more upload threats on this forum.
Logged
Brazillian Comodo User
fazio93
Comodo Volunteer
Global Moderator
Comodo's Hero
*****
Offline Offline

Posts: 2454
« Reply #1 on: January 25, 2009, 07:17:12 PM »
Quote from: gjmveloso on January 25, 2009, 06:58:21 PM
Many virus hunters that doesn't use CIS uses CIMA as one of the online tools available to "research" malware itself.

Because of this COMODO can use this community-powered tool to improve your AV detection rates and sent all samples submitted from CIMA to AV Lab (as a malwaresubmit[at]avlab.comodo.com e-mail...).

I currently sent all samples that I discovered to CIMA and VirusTotal only, no more upload threats on this forum.

Every sample goes to the lab (either by email, CIMA, etc.)
CIMA is great because it allows people to analyze their malware and also feeds the malware to COMODO's AV labs so suspicious files will be manually analyzed for anything and a sig will be created, so i guess this is the fastest way. 
Logged
Windows 7 Ultimate 64-bit
CIS 5.12.256249.2599
Please remember to follow the Forum Policy.
gjmveloso
Malware Research Group
Comodo Loves me
*****
Offline Offline

Posts: 166
« Reply #2 on: January 26, 2009, 10:32:45 AM »
Quote from: .FaZio93. on January 25, 2009, 07:17:12 PM
Every sample goes to the lab (either by email, CIMA, etc.)
CIMA is great because it allows people to analyze their malware and also feeds the malware to COMODO's AV labs so suspicious files will be manually analyzed for anything and a sig will be created, so i guess this is the fastest way. 


But I has read in some place that CAMAS submitted samples goes to AV Lab only when CAMAS detect it as suspicious.
I think that will be great if all samples goes to AV Lab analysis.
Logged
Brazillian Comodo User
fazio93
Comodo Volunteer
Global Moderator
Comodo's Hero
*****
Offline Offline

Posts: 2454
« Reply #3 on: January 26, 2009, 07:19:34 PM »
Quote from: gjmveloso on January 26, 2009, 10:32:45 AM
But I has read in some place that CAMAS submitted samples goes to AV Lab only when CAMAS detect it as suspicious.
I think that will be great if all samples goes to AV Lab analysis.

I agree (for now). I've seen CIMA miss some malware in the past, but I think as it improves even more, it will really help the analysts focus just on the malware and not having to see if it is malicious or not in the first place.

Smiley   
Logged
Windows 7 Ultimate 64-bit
CIS 5.12.256249.2599
Please remember to follow the Forum Policy.
salmon
Malware Research Group
Comodo Family Member
*****
Offline Offline

Posts: 76
« Reply #4 on: March 07, 2009, 10:03:08 AM »
There should be a button saying send to lab if its not rated as suspicious.
Logged
Tags:
Pages: [1] Go Up Print 
« previous next »
Jump to:  

SSL Certificate Free Virus Removal Firewall
Page created in 0.03 seconds with 20 queries.
Powered by SMF 1.1.18 | SMF © 2006, Simple Machines Design by 7dana.com