[clamav-users] Txt.Trojan.Kryptik-6887991-0 FOUND

Andrew Williams awillia2 at sourcefire.com
Tue Mar 12 23:42:38 EDT 2019


Michael,

The reported detections are likely false positives (I too am seeing matches
on Chrome cache files).  The signature will be dropped soon.

Thanks for bringing this to our attention.

-Andrew

Andrew Williams
Malware Research Team
Cisco Talos

On Tue, Mar 12, 2019 at 7:08 PM Michael Newman via clamav-users <
clamav-users at lists.clamav.net> wrote:

> Mac OS 10.14.3
>
> I wake up this morning to find that clamav has discovered sixteen
> instances of this:
>
> Txt.Trojan.Kryptik-6887991-0 FOUND
>
> Most of these are in Chrome cache files, but a few were in Apple Automator
> cache files.
>
> I’ve searched around, but find precious little on this infecting Macs.
> (Lots on Windows.)
>
> Can someone point me in the right direction to find out just what this is,
> where it came from and how I can get rid of it?
>
> _______________________________________________
>
> clamav-users mailing list
> clamav-users at lists.clamav.net
> https://lists.clamav.net/mailman/listinfo/clamav-users
>
>
> Help us build a comprehensive ClamAV guide:
> https://github.com/vrtadmin/clamav-faq
>
> http://www.clamav.net/contact.html#ml
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.clamav.net/pipermail/clamav-users/attachments/20190312/f2a3ad0d/attachment.html>


More information about the clamav-users mailing list