[Community-sigs] new sig
Andrea Allievi
aallievi at sourcefire.com
Thu Apr 16 08:13:45 EDT 2015
Hi Rok!
First of all, sorry fo the delay in the answer.
Thank you for the signature but unfortunately we are trying to limit the
number of hash-based signatures and we don't accept them anymore as
community signatures. The details for the Community Signatures program is
available here:
http://blog.clamav.net/2014/02/introducing-clamav-community-signatures.html
Given that the malware sample is of concern, we will analyse it and release
a signature for it as soon as possible.
If you would like, you can start writing a body-based signature, like a
logical one.
Here is the document that describe all the details:
https://github.com/vrtadmin/clamav-devel/raw/master/docs/signatures.pdf
<https://github.com/vrtadmin/clamav-devel/blob/master/docs/signatures.pdf>
Thanks,
Andrea Allievi
aallievi at sourcefire.com
Security Research Engineer
TALOS Security Intelligence and Research Group
Cisco Systems Inc.
On Tue, Apr 14, 2015 at 5:42 PM, Rok Potočnik <rok.potocnik at t-2.com> wrote:
> 1c94b386b6f3f91dca6e8a672125286b2e06b1ed208c6909250b37cdf5c2
> eb47:588288:new_filling_form_pdf.exe
>
>
> https://www.virustotal.com/en/file/1a29d8005a587a816ad1c3e01853c5
> 9f018a8c35f7b436d839e20da9aea2002c/analysis/1429024065/
>
>
> --
> LP, Rok Potočnik
> T-2 d.o.o.
>
> _______________________________________________
> Community-sigs mailing list
> Community-sigs at lists.clamav.net
> http://lists.clamav.net/cgi-bin/mailman/listinfo/community-sigs
>
> http://www.clamav.net/contact.html#ml
More information about the Community-sigs
mailing list