[clamav-users] Rule for false extension rtf
Virgo Pärna
virgo.parna at mail.ee
Wed Jul 10 06:59:28 UTC 2019
Lately there have been several malware rtf files with doc
extension, that I have received by e-mail and that are not immediately
recognized by clamav. From virustotal scan they appear to be RTF bug
exploits.
Since clamav has special type support for rtf, would it be
possible to write custom rule to block rtf files with doc extension?
--
Virgo Pärna
irgo.parna at mail.ee
More information about the clamav-users
mailing list