No Threat Detected is a verdict of an automated analysis result. Clean is a verdict of a proof, like valid certificate, or manual analysis. So if a file is manually analyzed, and found no threat, then it is clean. We don’t have to leave it in No Threat Detected.
You menton “Clean” is a verdict of a proof, like valid certificate.
I have mentioned 2 cracks in this thread & both have invalid certs & got “Clean” verdict.
So seems a bug with Valkyrie?
Not exactly. These are disjoint validation methods. It is enough to have one of them. Of course, human expert analysis has precedences over the other, when there is a conflicting case.
Is it safe to assume that in practice the machine judgment will be there first and that the human expert analysis will follow later?
Yes, as soon as the file is uploaded, the machine judgement is done, before it can reach to any human expert analysis. So it is definitely that way.
I uploaded latest Internet Download Manager ■■■■■ & Valkyrie gave verdict “No Threat Detected”.
Previous Internet Download Manager ■■■■■ Valkyrie gave verdict “Clean”.
The ■■■■■ is from same person & the ■■■■■ is same only version difference (if I compare both the cracks Valkyrie analysis).
So I am little confused if both the cracks are same with only version difference why/how Valkyrie gave different verdict to one as “Clean” & other as “No Threat Detected”?
Anyway its fine & no further queries on this.
1 query
For original IDMan.exe Valkyrie shows behavior analysis.
For ■■■■■ IDMan.exe Valkyrie mention behavior analysis not available, why?
The ■■■■■ one may contain some methods to evade behavior analysis.
Ok, got it.
Thank You