[clamav-users] Goldeneye ransomware
Matteo Dessalvi
m.dessalvi at gsi.de
Fri Dec 9 09:30:43 UTC 2016
Hi.
Thanks for the advice but we are actually using Sanesecurity
signatures. I was just put off by the fact that Badmacro.ndb
is reported to have medium false positives risk and so we
have avoided it but I guess I will make an attempt now.
Best regards,
Matteo
On 12/08/2016 09:55 PM, Steve basford wrote:
> Hi... this is detected with Badmacro.ndb.
>
> On 8 December 2016 16:54:26 Matteo Dessalvi <m.dessalvi at gsi.de> wrote
>
>>
>> I also ran a quick analysis on Malwr:
>> https://malwr.com/analysis/Y2VhYWNjZTk3NWFhNGRhMDg5OWYwY2E5MzdjNDA2M2I/
>>
>> Best regards,
>> Matteo
>>
>> _______________________________________________
>> clamav-users mailing list
>> clamav-users at lists.clamav.net
>> http://lists.clamav.net/cgi-bin/mailman/listinfo/clamav-users
>>
>>
>> Help us build a comprehensive ClamAV guide:
>> https://github.com/vrtadmin/clamav-faq
>>
>> http://www.clamav.net/contact.html#ml
More information about the clamav-users
mailing list