[clamav-users] Goldeneye ransomware
Michael D. L.
clamav at cosis.dk
Thu Dec 8 17:51:06 UTC 2016
ClamAV doesn't detect/protect against malware by default.
You need to add third-party databases like http://sanesecurity.com/
Works really well for me.
Cheers.
On 12/08/2016 05:53 PM, Matteo Dessalvi wrote:
> Hi all.
>
> In the last couple of days our Human Resources
> have received a bunch of email with this kind of
> ransomware attached (as Excel file) and ClamAV
> was unfortunately unable to stop it.
>
> Anybody stumbled upon it recently? If yes, did
> you create your own signature for it?
>
> I have just submitted a report through:
> https://www.clamav.net/reports/malware
>
> More details here:
>
> https://www.heise.de/newsticker/meldung/Goldeneye-Ransomware-Die-Bedrohung-erkennen-Mitarbeiter-warnen-Infektion-verhindern-3564252.html
>
>
> (sorry, it is only in German but I guess Google
> Translate should work pretty well on it).
>
> I also ran a quick analysis on Malwr:
> https://malwr.com/analysis/Y2VhYWNjZTk3NWFhNGRhMDg5OWYwY2E5MzdjNDA2M2I/
>
> Best regards,
> Matteo
>
> _______________________________________________
> clamav-users mailing list
> clamav-users at lists.clamav.net
> http://lists.clamav.net/cgi-bin/mailman/listinfo/clamav-users
>
>
> Help us build a comprehensive ClamAV guide:
> https://github.com/vrtadmin/clamav-faq
>
> http://www.clamav.net/contact.html#ml
More information about the clamav-users
mailing list