Heur.Corrupt: What is it

What does the detection Heur.Corrupt.PE@-1 mean, and is it possible that a file detected by this could be analyzed and assigned a signature?

I ask because I’ve got collected malware that’s detected with those heuristics and I don’t know if I should submit it again, or there’s no point. Thanks.


runpe is corrupted

Thanks, but I’m not sure what that means.

Is this heuristic detecting a type of virus, corrupted code that won’t run, or something else? ???

it mean is not a valid application, runpe can be modified by malware for bypass antivirus.

Can files detected this way not be assigned a signature. I’ve been reporting them to have signatures added and so far I haven’t seen any detected as virus, trojan, etc… They’re still just detected with heur.corrupt.

Will they only be detected with the heuristic detection? Essentially I want to know if I am wasting my time, and that of the Comodo analyst, by reporting them to be analyzed.

Hi Chiron,
If you can find the FP file,you can submit through this
link:Comodo Firewall | Get Best Personal Firewall Software for $29.99 A Year we can go to have a look at it.
Thanks and Regards,
Lin mengze

Thanks for the response. I’ve been reporting them through the Malware Research Group board. I just wanted to make sure I wasn’t wasting anyone’s time.

I guess I’m not. Thanks.