AnthonyQ

Hi, I would like to report an undetected malware sample that can steal users' Discord credentials (MD5: 342f8feb51d604cb5aee88d72cc6eff8), available at https://www.virustotal.com/gui/file/8b7252c0568dde4408033110bee56d99ec603d51a1c2b4008a6643ee904154ad. I have already sent this sample to samples[at]eset.com, but the malware research team has not responded, and a detection has not yet been added. Besides this sample, I would also like to report two phishing/malicious sites that I have already submitted by email and web form but have not yet been blacklisted. The first one is a fake Telegram site (hxxps://teelegrem[.com/). The malware detected as "Win32/GenCBL.BHC" will be downloaded if you click the download button. The second one is a fake Chrome site (hxxps://chrome.xahuapu[.net/), which has already been blocked by Google Safebrowsing and Sophos as per VirusTotal. Thanks.

Hi Macros, Thanks for your reply. But unfortunately, the ESET distributor in China is not helpful at all. As I said in my post, I created a service ticket for this translation issue months ago, but I haven't heard back yet. At the very least, the mistranslation of the country's name "Poland" should be corrected. This is pretty obvious, and you can verify this using the Google Translation. Regards, Anthony

Hi, I would like to report some errors in Chinese localization. 1. Incorrect translation of the word "Poland" The current translation of the country name "Poland" is "波澜" ("waves" in Chinese), but the correct translation is "波兰". In Chinese, these two words have the same pronunciation but have very different meanings. 2. Incorrect reduplicated wording in the LiveGuard notification As shown in the screenshot, the character "已" is duplicated, and one "已" should be deleted. The correct sentence is "已由 ESET LiveGuard 检测到该威胁". 3. Inaccurate translation of "a variant of ..." The word "variant" is inaccurately translated as "变量" in the current translation. In Chinese, "变量" means "variable quantity," which is a mathematical concept. In this context, the word "variant" should be translated as "变种", and "A variant of Win32/Kryptik.HPLK trojan" should be translated as "Win32/Kryptik.HPLK 特洛伊木马 的变种". 4. Suggested translation for "Dismiss" The current translation of "Dismiss" is not wrong, but is not clear and straightforward. "解除", as it is currently translated, means to remove or get rid of something. As such, I recommend replacing the current translation with the phrase "了解". Please forward the four suggestions listed above to the localization team for consideration. I have previously submitted a service ticket regarding this issue, but I have yet to hear back from the support team, so I have to post here.

I would like to add that F-Secure has classified one of RAV's online installer as PUA after submission. I have attached relevant online installers for ESET's analysis. RAV.zip

I run it just once and it works. 🙂 Nonetheless, a fix is urgently needed.

Just checked, I have the same issue. GPU is missing in Task Manager. I have not experienced this problem previously when I used other AVs. This problem is critical and needs immediate attention from the development team.

Hello, I also want to report an issue with sample submission. I've sent ~15 emails to the Lab in the last three days and have received only three responses. I'm not sure if the analysts have analyzed my submissions because ESET has yet to detect the following samples: https://www.virustotal.com/gui/file/f0a81420bfcdcd05a469db022b27547d40547aa31e948b85c7f708399b428899 - Rootkit https://www.virustotal.com/gui/file/45fbcd97f558df487706a5efee45fcd56a53d6d0225c4da2b3f5e07f44d6573c - VBS downloader https://www.virustotal.com/gui/file/75018e6f3a5865e8358940c3f4567f7c3c20fa54044fae637608c23d5881ce0e - Android locker, the current Potential Unsafe detection is not enough https://www.virustotal.com/gui/file/7a9aa63df3c8cd1c978b0e139f76d46b3ca37a167973ca072a4189ea3c012132 - Rootkit trojan, the current PUA detection is not enough ... and more Thanks in advance.