Author Topic: Submit Malware Here To Be Blacklisted - 2018 (NO LIVE MALWARE!)  (Read 13229 times)

Offline james77

  • Newbie
  • *
  • Posts: 7
Re: Submit Malware Here To Be Blacklisted - 2018 (NO LIVE MALWARE!)
« Reply #15 on: March 07, 2018, 09:47:25 AM »
suspicious files

https://www.virustotal.com/#/file/750caa2e0d38f6df4c3c53cc8078ddf82663ee25c82dde23557fa3c66cccb296/detection

SHA-1   92ac70052bbcc5363672d0d73db8c15548e50980

https://www.virustotal.com/#/file/adc4ceec0dc88d17373f45f2638cb72ceafd5a77587cfaeffe68579c9c75be76/detection

SHA-1   488f552c0bc867610c18cadab9802d804d02756f

The second link appeared that comodo detected it as unclassifiedMalware however CIS in my computer failed to detect it.

Offline andrei.savin

  • Comodo Staff
  • Comodo Loves me
  • *****
  • Posts: 197
Re: Submit Malware Here To Be Blacklisted - 2018 (NO LIVE MALWARE!)
« Reply #16 on: March 07, 2018, 10:00:52 AM »
Hello James,
Thanks for your submission, we will check the files and appropriate actions will be taken.

Best regards,
Andrei Savin
If possible please post your malware submissions as SHA1 lists (created with HashMyFiles or any other software). Always make sure first you have submitted the samples through CIS.

Offline pio

  • Malware Research Group
  • Comodo's Hero
  • *****
  • Posts: 556
  • I like CIS , Kali Linux , IDA Pro & Fl Studio ;)
Re: Submit Malware Here To Be Blacklisted - 2018 (NO LIVE MALWARE!)
« Reply #17 on: March 08, 2018, 12:28:28 AM »
File has a positive Signature Detection from Valkyrie as PUA and at VT as "CloudScanner.Trojan.Gen" . But the File has NO
Detection from CIS !!!

Please take a look at this !!! Thank you !!!

>>> https://valkyrie.comodo.com/get_info?sha1=807d14f20104a98fed10e0c4ceba42c4fdb365b5

>>> https://www.virustotal.com/#/file/b0c1bb1f8ca33e9e88446810cca5e5156eb2f08dd432faaffff4b88029079260/detection
« Last Edit: March 08, 2018, 12:38:39 AM by pio »
*** Paranoid Bastard since CIS 3.5 ! Independent - NON Profit Malware Analyst ***

Offline Aravindhraj J

  • Comodo Staff
  • Comodo Family Member
  • *****
  • Posts: 77
Re: Submit Malware Here To Be Blacklisted - 2018 (NO LIVE MALWARE!)
« Reply #18 on: March 08, 2018, 12:44:08 AM »
Hi pio,

Thank you for your submission.
We'll check them and if found to be malware detection will be added.

Regards,
Aravindhraj J

Offline portobello

  • Comodo Family Member
  • ***
  • Posts: 93
Re: Submit Malware Here To Be Blacklisted - 2018 (NO LIVE MALWARE!)
« Reply #19 on: March 09, 2018, 04:16:59 AM »
Hi,
 
SHA-1   6218ec7b94e5e210d9705deaf2e7ffdce49f3a57

MD5   ce375108be0baa6be840bfff697546d8

VT:   https://www.virustotal.com/#/file/c8ea8c9532b14e21b37b98424b1ea82c7f112eec758db689653c610067b4647e/detection 

Offline Aravindhraj J

  • Comodo Staff
  • Comodo Family Member
  • *****
  • Posts: 77
Re: Submit Malware Here To Be Blacklisted - 2018 (NO LIVE MALWARE!)
« Reply #20 on: March 09, 2018, 04:26:00 AM »
Hi portobello,

Thank you for your submission.
We'll check them and if found to be malware detection will be added.

Regards,
Aravindhraj J

Offline Felipe Oliveira

  • Malware Research Group
  • Comodo's Hero
  • *****
  • Posts: 484
  • Brazilian / Medicine Student / Love Technology
Re: Submit Malware Here To Be Blacklisted - 2018 (NO LIVE MALWARE!)
« Reply #21 on: April 01, 2018, 01:07:08 PM »
Hello, please add these malwares to your signatures. This malware is related to steal credit and debit cards in Brazil according to this article from Kaspersky https://securelist.com/goodfellas-the-brazilian-carding-scene-is-after-you/84263/

I don't found the samples, but I will share SHA1, maybe you can found or analyze if already in your database.

SHA1:

13c6c636a62fa5381a151c7d6bc9f61a8474a32c
c193abfe7508a55716cf11aff5cb07fd77b1aef1
2ec541612341521876df8bc5d389284b80466f7e

Thanks!

Offline meldan

  • First Response Group
  • Comodo's Hero
  • *****
  • Posts: 3237
Re: Submit Malware Here To Be Blacklisted - 2018 (NO LIVE MALWARE!)
« Reply #22 on: April 01, 2018, 01:30:16 PM »
Hi,

Thank you for your submission.
We'll check them and if found to be malware detection will be added.

Kind Regards,
Erik M.

Offline paradis_pal

  • Comodo Family Member
  • ***
  • Posts: 65
Re: Submit Malware Here To Be Blacklisted - 2018 (NO LIVE MALWARE!)
« Reply #23 on: April 05, 2018, 12:03:09 PM »
SHA-256   bab954524d96a6d56d89e07e72facfc1c4b5f08b4f3cd4d41bd5057a6580f3a1

https://www.virustotal.com/#/file/bab954524d96a6d56d89e07e72facfc1c4b5f08b4f3cd4d41bd5057a6580f3a1/detection

Offline andrei.savin

  • Comodo Staff
  • Comodo Loves me
  • *****
  • Posts: 197
Re: Submit Malware Here To Be Blacklisted - 2018 (NO LIVE MALWARE!)
« Reply #24 on: April 05, 2018, 12:04:22 PM »
Hello,
Thanks for the submission, we'll check the files and add detection if necesarry.

Best regards,
Andrei Savin
If possible please post your malware submissions as SHA1 lists (created with HashMyFiles or any other software). Always make sure first you have submitted the samples through CIS.

Offline paradis_pal

  • Comodo Family Member
  • ***
  • Posts: 65
Re: Submit Malware Here To Be Blacklisted - 2018 (NO LIVE MALWARE!)
« Reply #25 on: April 07, 2018, 03:24:52 PM »
https://www.virustotal.com/#/file/29ed9d85ed6855358ccdeb40a6ee93c4890e5a64dfb8f182fb4b0221b9bad32c/detection

SHA-256   29ed9d85ed6855358ccdeb40a6ee93c4890e5a64dfb8f182fb4b0221b9bad32c

Offline meldan

  • First Response Group
  • Comodo's Hero
  • *****
  • Posts: 3237
Re: Submit Malware Here To Be Blacklisted - 2018 (NO LIVE MALWARE!)
« Reply #26 on: April 07, 2018, 04:07:50 PM »
Hi,

Thank you for your submission.
We'll check them and if found to be malware detection will be added.

Kind Regards,
Erik M.

Offline Felipe Oliveira

  • Malware Research Group
  • Comodo's Hero
  • *****
  • Posts: 484
  • Brazilian / Medicine Student / Love Technology
Re: Submit Malware Here To Be Blacklisted - 2018 (NO LIVE MALWARE!)
« Reply #27 on: April 08, 2018, 03:36:35 PM »
Hello, please add these malwares to your signatures. This malware is related to steal credit and debit cards in Brazil according to this article from Kaspersky https://securelist.com/goodfellas-the-brazilian-carding-scene-is-after-you/84263/

I don't found the samples, but I will share SHA1, maybe you can found or analyze if already in your database.

SHA1:

13c6c636a62fa5381a151c7d6bc9f61a8474a32c
c193abfe7508a55716cf11aff5cb07fd77b1aef1
2ec541612341521876df8bc5d389284b80466f7e

Thanks!
I checked it and already detect all this samples. Thanks!!


Please, add these 2 malwares:

4d5b09e25f4b84c424a43cca52c87467fcdc8567
f6c086fc2c42addb3b7a265059ed18ba860fcf1c

The one below I dont know if is malware, but seens suspicious to me.

0497995572cc56c0910bd954aeae353765933d9f

Offline meldan

  • First Response Group
  • Comodo's Hero
  • *****
  • Posts: 3237
Re: Submit Malware Here To Be Blacklisted - 2018 (NO LIVE MALWARE!)
« Reply #28 on: April 08, 2018, 03:50:48 PM »
Hi,

Thank you for your submission.
We'll check them and if found to be malware detection will be added.

Kind Regards,
Erik M.

Offline Felipe Oliveira

  • Malware Research Group
  • Comodo's Hero
  • *****
  • Posts: 484
  • Brazilian / Medicine Student / Love Technology
Re: Submit Malware Here To Be Blacklisted - 2018 (NO LIVE MALWARE!)
« Reply #29 on: April 08, 2018, 07:53:51 PM »
I checked it and already detect all this samples. Thanks!!


Please, add these 2 malwares:

4d5b09e25f4b84c424a43cca52c87467fcdc8567
f6c086fc2c42addb3b7a265059ed18ba860fcf1c

The one below I dont know if is malware, but seens suspicious to me.

0497995572cc56c0910bd954aeae353765933d9f
Already detecting. Thanks!!

Please blacklist these 4:

bebc8e0f80360b728392fb2c0c8101fbfdf1234c
12ad3ef3317d140f0697501a012998cf7ee461a1
a04a046689ef18ccf2037ad58573c44f98c10766
3a3409f0efb1613d639a9b48332894c198bc0c9d

 

Free Endpoint Protection
Seo4Smf 2.0 © SmfMod.Com Smf Destek