False Negative

File is not detected by comodo and during its runtime only certain components of the malware are detected.
VT url :

Original malicious file is provided via a password protected zip archive which expands to over 300MB using padding of the PE to avoid upload to analysis services.

file location :
https://workupload.com/file/6YHjB4TDumT
password to zip archive is 2023

Hello SnoopNL,

Thank you for sharing this, we’ll check it.

Best regards,
FlorinG

Hello FlorinG,

Is the sample being detected now using the current db?

kind regards,

SnoopNL

Hello,

The sample is detected since db 35325.

Best regards,
FlorinG