[clamav-users] Identifying jar virus file
Al Varnell
alvarnell at mac.com
Tue Oct 20 02:05:44 UTC 2015
It seems evident to me that the reason is that Microsoft doesn’t share it’s samples with other A-V signature writers. Somebody needs to provide the sample to ClamAV, Sophos, VirusTotal, etc. and it might as well be you now that you know where to upload it to.
-Al-
On Mon, Oct 19, 2015 at 04:28 PM, Alex wrote:
>
> Hi,
> I have a jar file that is apparently identified as a virus by
> Microsoft as "Trojan.Java.Adwind.af" but not a virus by either clamav
> or sophos. Microsoft apparently first identified this early this year,
> so I'm curious why it's not being tagged by clamav or sophos.
>
> I know I can upload a sample, but I'm more interested in knowing if
> Microsoft is identifying this as an FP, or otherwise why clamav and
> sophos aren't identifying it.
>
> Where can I upload a binary file and hopefully ask that someone
> investigate it for me?
>
> Thanks so much,
> Alex
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 3569 bytes
Desc: not available
URL: <https://lists.clamav.net/pipermail/clamav-users/attachments/20151019/5f6a63e1/attachment.bin>
More information about the clamav-users
mailing list