Author Topic: Report trusted and whitelisted malware here - 2022 (NO LIVE MALWARE!)  (Read 42726 times)

Offline yigido

  • Malware Research Group
  • Comodo's Hero
  • *****
  • Posts: 6106
  • Left the forum... Thanks COMODO for everything.

Offline ipipirig

  • Comodo's Hero
  • *****
  • Posts: 357
Re: Report trusted and whitelisted malware here - 2022 (NO LIVE MALWARE!)
« Reply #76 on: January 26, 2022, 06:51:10 AM »
Hi,

Thank you for your submission, we'll check it.
Best regards,
Ionut Pipirig

Offline yigido

  • Malware Research Group
  • Comodo's Hero
  • *****
  • Posts: 6106
  • Left the forum... Thanks COMODO for everything.
Re: Report trusted and whitelisted malware here - 2022 (NO LIVE MALWARE!)
« Reply #77 on: January 26, 2022, 11:54:43 AM »
CryptoMiner Avira  :o

SHA1 :  02fcdb0689dc1a0c22fdef35f3065bfe0da8ba31

https://verdict.valkyrie.comodo.com/file/result?s=02fcdb0689dc1a0c22fdef35f3065bfe0da8ba31
https://www.virustotal.com/gui/file/854964a387b80a060066cf712f25a2b55b618f5b5c4669c1bd80e580014fad25/details

Hello meldan,

The file is malicious for signatures, detected on VirusTotal but verdict is still clean on Verdict Valkyrie Service.
File is not detected by CIS.
What can we do this ?

Thanks for marking it as malicious.

Offline yigido

  • Malware Research Group
  • Comodo's Hero
  • *****
  • Posts: 6106
  • Left the forum... Thanks COMODO for everything.

Offline FlorinG

  • Comodo Staff
  • Comodo's Hero
  • *****
  • Posts: 3967
Re: Report trusted and whitelisted malware here - 2022 (NO LIVE MALWARE!)
« Reply #79 on: January 27, 2022, 01:39:02 PM »
Trusted Malware Detection Score 30/70

SHA1 : ff8044f77bf8a57bcf7e4d246c177ab22cf5f8b4

https://verdict.valkyrie.comodo.com/file/result?s=ff8044f77bf8a57bcf7e4d246c177ab22cf5f8b4
https://www.virustotal.com/gui/file/cc2dbbead89561a66cfe3edeb3a4e1df931bdc1923b08f843f9efa58b1750f0c/detection



Hello yigido,

Thank you for sharing this, it should be fixed now.

Best regards,
FlorinG
If possible please post your malware submissions as SHA1 lists (created with HashMyFiles or any other software). Always make sure first you have submitted the samples through CIS.

Offline yigido

  • Malware Research Group
  • Comodo's Hero
  • *****
  • Posts: 6106
  • Left the forum... Thanks COMODO for everything.
Re: Report trusted and whitelisted malware here - 2022 (NO LIVE MALWARE!)
« Reply #80 on: January 27, 2022, 01:41:09 PM »
Hello yigido,

Thank you for sharing this, it should be fixed now.

Best regards,
FlorinG

Confirmed, thanks  :-TU

Offline yigido

  • Malware Research Group
  • Comodo's Hero
  • *****
  • Posts: 6106
  • Left the forum... Thanks COMODO for everything.
« Last Edit: January 29, 2022, 10:32:07 AM by yigido »

Offline meldan

  • First Response Group
  • Comodo's Hero
  • *****
  • Posts: 3569
Re: Report trusted and whitelisted malware here - 2022 (NO LIVE MALWARE!)
« Reply #82 on: January 29, 2022, 11:30:46 AM »
Hi,

Thank you for your submission, we'll check it.

Kind Regards,
Erik M.

Offline yigido

  • Malware Research Group
  • Comodo's Hero
  • *****
  • Posts: 6106
  • Left the forum... Thanks COMODO for everything.
Re: Report trusted and whitelisted malware here - 2022 (NO LIVE MALWARE!)
« Reply #83 on: January 30, 2022, 11:55:25 AM »

Offline meldan

  • First Response Group
  • Comodo's Hero
  • *****
  • Posts: 3569
Re: Report trusted and whitelisted malware here - 2022 (NO LIVE MALWARE!)
« Reply #84 on: January 30, 2022, 02:50:03 PM »
Hi,

Thank you for your submission, we'll check it.

Kind Regards,
Erik M.


Offline ipipirig

  • Comodo's Hero
  • *****
  • Posts: 357
Re: Report trusted and whitelisted malware here - 2022 (NO LIVE MALWARE!)
« Reply #86 on: February 01, 2022, 12:59:30 PM »
Hi,

Thank you for your submission, we'll check it.
Best regards,
Ionut Pipirig


Offline FlorinG

  • Comodo Staff
  • Comodo's Hero
  • *****
  • Posts: 3967
Re: Report trusted and whitelisted malware here - 2022 (NO LIVE MALWARE!)
« Reply #88 on: February 02, 2022, 07:37:31 AM »
Hello yigido,

Thank you for reporting this, we'll verify it.

Best regards,
FlorinG
If possible please post your malware submissions as SHA1 lists (created with HashMyFiles or any other software). Always make sure first you have submitted the samples through CIS.

Offline yigido

  • Malware Research Group
  • Comodo's Hero
  • *****
  • Posts: 6106
  • Left the forum... Thanks COMODO for everything.
Re: Report trusted and whitelisted malware here - 2022 (NO LIVE MALWARE!)
« Reply #89 on: February 05, 2022, 11:32:53 AM »
Trusted PUP
SHA1 : 22870b951d4901ef77490071020b784c44d1b7b4
https://verdict.valkyrie.comodo.com/file/result?s=22870b951d4901ef77490071020b784c44d1b7b4
https://www.virustotal.com/gui/file/8ae992b73d3baa2420b8bde4835cf034652b2a70f97ee04a7e8849a2e01a722d
------------------------------------------------------------------------------------------------------------------------
It behaves like Fake System Cleaner. Scaring the user about PC problems & try to sell license key.
> Please remove the vendor "SOFT-EKSPERTY, OOO" from the Trusted Vendor List!
See VM analysis and PUP in action: https://app.any.run/tasks/a9652230-cb69-4147-81af-da8ff75186d6/
------------------------------------------------------------------------------------------------------------------------

------------------------------------------------------------------------------------------------------------------------
Add these sites to webfiltering.
Homepage : hxxps://chistilka.com/
Download : hxxps://dd.chistilka.ru/chistilkacom/chistilka.exe
« Last Edit: February 05, 2022, 11:35:16 AM by yigido »

 

Free Endpoint Protection
Seo4Smf 2.0 © SmfMod.Com Smf Destek