Jump to content

Archived

This topic is now archived and is closed to further replies.

galaxy

ESET Smart Security Premium 2018 Failed Test

Recommended Posts

Failed, can not fix it ..

the hips setting was on, the filter was not set correctly, can not this be improved with proper program control?

Share this post


Link to post
Share on other sites

Post in English please!

Share this post


Link to post
Share on other sites

And also post a hash of the file HelloWorld.exe. It's not a typical name for malware so it could have been crafted to be not detected. One could take any malware and modify it until it becomes undetected by the AV that he or she focuses on so making any conclusions just based on one undetected and probably not real file doesn't make any sense. Knowing a hash of it would help us find out how many users have encountered it.  My estimation is 1 or 2 if the "tester" had the LiveGrid feedback system enabled.

Share this post


Link to post
Share on other sites

Unfortunately, I do not find the hash, but the variant exists since 2010, so it should be recognized and blocked, a program control would be great.in google you will find a lot

 

Share this post


Link to post
Share on other sites
9 hours ago, Marcos said:

It's not a typical name for malware so it could have been crafted to be not detected

Seriously?  What is a typical name for a malware?  And, a typical malware is crafted to be detected?

What would you expect, a malware with name virus.exe?

Share this post


Link to post
Share on other sites

Please refrain from shouting at moderators which is against forum rules and keep your posts polite. Your message has been edited and unnecessary exclamation marks and formatting was removed.

Share this post


Link to post
Share on other sites

I want to help that this Crypto Ransomware is recognized, but still höfflich and we try to fix the problem. is not this possible?

Share this post


Link to post
Share on other sites

There are all AVs failed with the new variant.

Share this post


Link to post
Share on other sites
8 minutes ago, galaxy said:

I want to help that this Crypto Ransomware is recognized, but still höfflich and we try to fix the problem. is not this possible?

Please submit the sample as per the instructions https://support.eset.com/kb141/ for analysis.

Share this post


Link to post
Share on other sites

Please do not be angry, but I have to first try to get this file, it is not possible to recognize the ransomware

Share this post


Link to post
Share on other sites

I put in the hips setting the filters, also the user and all disks. does that protect me from that?

Share this post


Link to post
Share on other sites

Kyrox is the name of the malware

Share this post


Link to post
Share on other sites
3 hours ago, galaxy said:

Kyrox is the name of the malware

Since you refuse to post a file hash, it is impossible to positively identify what malware you are referring to and if it is detectible by any AV solutions.

It appears you are referring to the Kyrox ransomware oftentimes delivery as RansomKyrox.exe. There is a detailed analysis of it on Hybrid-Analysis here: https://www.hybrid-analysis.com/sample/d3cb8a23a8250177c67a54e02ac33e5bd1c6d3a551c2bc39c660f3f62b7c9a5f?environmentId=100 . This variant is detected by 44 vendors on VT including Eset which does so as "a variant of Generik.TZCZKH."

Ad hoc testing of malware such as what you are doing is strongly not recommended. This is because malware delivery method is critical in detection by most AV security solutions today. You downloading this sample from wherever you got it from and directly executing it not the proper way to perform malware testing.  

Share this post


Link to post
Share on other sites

I found only the video, unfortunately I can not get to the file, otherwise I would submit it immediately

Share this post


Link to post
Share on other sites
2 minutes ago, galaxy said:

I found only the video

Take uTube malware test video's "with a grain of salt." There is no way to independently verify what and how they tested.

Share this post


Link to post
Share on other sites

Ok, I do not get the file, but it's a ransomware that needs to be recognized or not

Share this post


Link to post
Share on other sites

ESET works against known threats with its database and is cloud, but the HIPS is clearly to rethink, because even in the Intelligent mode too much happens: /

Share this post


Link to post
Share on other sites

  • Recently Browsing   0 members

    No registered users viewing this page.

×