Jump to content

Tencent.O PUA Detection

0xDEADBEEF
 Share

Recommended Posts

itman

itman 1,659

Posted
Posted

Eset also doesn't like Tencent's Spectre test. It flags it as JS/Exploit.Spectre; most likely due to its running of the Spectre POC code.

Link to comment
Share on other sites
0xDEADBEEF

0xDEADBEEF 43

Posted
  • Author
Posted
5 hours ago, itman said:

Eset also doesn't like Tencent's Spectre test. It flags it as JS/Exploit.Spectre; most likely due to its running of the Spectre POC code.

hmm, was wondering what kind of signature is extracted from that exploit script

BTW I am curious about the malicious behaviors of this Tencent.O. Since it is a very popular IM software in China, I don't think ESET will detect this without a good reason. 

Link to comment
Share on other sites
  • Administrators
Marcos

Marcos 5,069

Posted
  • Administrators
Posted

Tencent has been detected as PUA since 2015. Since it was not me who analyzed it, I don't know what's exactly wrong with it. However, the detection was created by an experienced PUA engineer so there was definitely something that makes it PUA.

Link to comment
Share on other sites
0xDEADBEEF

0xDEADBEEF 43

Posted
  • Author
Posted
12 minutes ago, Marcos said:

Tencent has been detected as PUA since 2015. Since it was not me who analyzed it, I don't know what's exactly wrong with it. However, the detection was created by an experienced PUA engineer so there was definitely something that makes it PUA.

I appreciate if ESET can disclose some detailed reasons behind this detection. It can help me evaluate whether to whitelist this software or not (and the truth is most Chinese users simply whitelist this detection... therefore knowing the reason serves as a better justification for not whitelisting this PUA :))

Link to comment
Share on other sites
Guest
This topic is now closed to further replies.
 Share
Go to topic listing

  • Recently Browsing   0 members

    • No registered users viewing this page.
×
×
  • Create New...