Author Topic: Report False Positives for Valkyrie Service Here  (Read 7127 times)

Offline Siketa

  • Comodo's Hero
  • *****
  • Posts: 5066
  • ZIG ZAG
Re: Report False Positives for Valkyrie Service Here
« Reply #15 on: January 30, 2016, 08:58:05 AM »
They have very low VT detection ratio by few engines known for FPs (F-Prot, Zillya...).

Offline yigido

  • Malware Research Group
  • Comodo's Hero
  • *****
  • Posts: 5380
  • COMODO Rocks!
    • Free Comodo Products!
Firefox Nightly
Encrypt the web! Use HTTPS Everywhere..
Block spying ads and invisible trackers! Use Privacy Badger..

Offline morphiusz

  • Global Moderator
  • Comodo's Hero
  • *****
  • Posts: 2994
    • Suspicious file?
« Last Edit: February 05, 2016, 10:00:49 AM by morphiusz »

Offline yigido

  • Malware Research Group
  • Comodo's Hero
  • *****
  • Posts: 5380
  • COMODO Rocks!
    • Free Comodo Products!
Re: Report False Positives for Valkyrie Service Here
« Reply #18 on: February 05, 2016, 10:07:37 AM »
It looks like it has correct and verified digital signature.
Or a bug -> https://forums.comodo.com/comodo-valkyrie-fls/report-problems-with-valkyrie-file-verdict-service-t79618.0.html;msg828840#msg828840
I sent it to manual analysis, they fixed the "Safe" verdict.
Firefox Nightly
Encrypt the web! Use HTTPS Everywhere..
Block spying ads and invisible trackers! Use Privacy Badger..

Offline fatih.orhan

  • Global Moderator
  • Comodo Loves me
  • *****
  • Posts: 153
Re: Report False Positives for Valkyrie Service Here
« Reply #19 on: February 05, 2016, 10:18:05 AM »
Trusted Trojan Sample
https://valkyrie.comodo.com/get_info?sha1=817eace620e228c2b961d50853234f2f261f48fe
This is a file which has stolen certificate. It should be validated by Valkyrie. The case was known to us, and it is already fixed, it will be available with next update.

The vendor is trusted.

Offline yigido

  • Malware Research Group
  • Comodo's Hero
  • *****
  • Posts: 5380
  • COMODO Rocks!
    • Free Comodo Products!
Re: Report False Positives for Valkyrie Service Here
« Reply #20 on: February 05, 2016, 10:21:31 AM »
This is a file which has stolen certificate. It should be validated by Valkyrie. The case was known to us, and it is already fixed, it will be available with next update.

The vendor is trusted.

Actually, I am seeing no certificate on VT result and on file. Whats the vendor?

Firefox Nightly
Encrypt the web! Use HTTPS Everywhere..
Block spying ads and invisible trackers! Use Privacy Badger..

Offline fatih.orhan

  • Global Moderator
  • Comodo Loves me
  • *****
  • Posts: 153
Re: Report False Positives for Valkyrie Service Here
« Reply #21 on: February 15, 2016, 08:26:56 AM »
Actually, I am seeing no certificate on VT result and on file. Whats the vendor?



The certificate is invalid. That's why some Windows versions display it as invalid, some doesn't display at all.  Please check the image

[attachment deleted by admin]

Offline Wisdom

  • Star Group
  • Comodo's Hero
  • *****
  • Posts: 1023
  • Default-Deny Protection
    • CFI
Heuristics: detecting tomorrow’s threats today

Offline Wisdom

  • Star Group
  • Comodo's Hero
  • *****
  • Posts: 1023
  • Default-Deny Protection
    • CFI
Heuristics: detecting tomorrow’s threats today

Offline yigido

  • Malware Research Group
  • Comodo's Hero
  • *****
  • Posts: 5380
  • COMODO Rocks!
    • Free Comodo Products!
Re: Report False Positives for Valkyrie Service Here
« Reply #24 on: June 18, 2016, 04:52:19 PM »
Screenshot: https://s31.postimg.org/4u5uzjdln/screenshot_9.png

Valkyrie Result: https://valkyrie.comodo.com/get_info?sha1=b39f9342a7f51aeb9d9668e25bdf223cce35275d

It is just 64bit VLC Media Player uninstaller, please fix your "human expert analysis" result.
Firefox Nightly
Encrypt the web! Use HTTPS Everywhere..
Block spying ads and invisible trackers! Use Privacy Badger..

Offline yigido

  • Malware Research Group
  • Comodo's Hero
  • *****
  • Posts: 5380
  • COMODO Rocks!
    • Free Comodo Products!
Firefox Nightly
Encrypt the web! Use HTTPS Everywhere..
Block spying ads and invisible trackers! Use Privacy Badger..

Offline yigido

  • Malware Research Group
  • Comodo's Hero
  • *****
  • Posts: 5380
  • COMODO Rocks!
    • Free Comodo Products!
Firefox Nightly
Encrypt the web! Use HTTPS Everywhere..
Block spying ads and invisible trackers! Use Privacy Badger..

Offline yigido

  • Malware Research Group
  • Comodo's Hero
  • *****
  • Posts: 5380
  • COMODO Rocks!
    • Free Comodo Products!
Firefox Nightly
Encrypt the web! Use HTTPS Everywhere..
Block spying ads and invisible trackers! Use Privacy Badger..

Offline yigido

  • Malware Research Group
  • Comodo's Hero
  • *****
  • Posts: 5380
  • COMODO Rocks!
    • Free Comodo Products!
Firefox Nightly
Encrypt the web! Use HTTPS Everywhere..
Block spying ads and invisible trackers! Use Privacy Badger..

Offline yigido

  • Malware Research Group
  • Comodo's Hero
  • *****
  • Posts: 5380
  • COMODO Rocks!
    • Free Comodo Products!
Firefox Nightly
Encrypt the web! Use HTTPS Everywhere..
Block spying ads and invisible trackers! Use Privacy Badger..

 

Seo4Smf 2.0 © SmfMod.Com Smf Destek