Owais Aziz 0 Posted February 6 Share Posted February 6 We are receiving multiple notifications from our one user device "PDF/Phishing.A.Gen detection " Eset endpoint security mac unfortunately no option to do advance analysis or upload it directly from eset cloud portal to eset team nor we can download the file for investigation Quote Link to comment Share on other sites More sharing options...
Most Valued Members Nightowl 183 Posted February 7 Most Valued Members Share Posted February 7 If the file is newly seen and feedback is enabled with ESET , then ESET would upload it automatically but as I've seen it is spam box mails that have those detections. Quote Link to comment Share on other sites More sharing options...
Administrators Marcos 4,614 Posted February 7 Administrators Share Posted February 7 Please provide such PDF file. You can either submit it to ESET as per https://support.eset.com/en/kb141 or upload it here and I'll check it out. Quote Link to comment Share on other sites More sharing options...
Owais Aziz 0 Posted February 7 Author Share Posted February 7 How can i download or upload these files directly to eset ? I dont want to take remote session of user pc is there any way ? Quote Link to comment Share on other sites More sharing options...
Administrators Marcos 4,614 Posted February 7 Administrators Share Posted February 7 Since it's mailboxes with messages where the detection occurred, they can be quite big to send. If you can find the exact message(s) with PDF files that were detected in your email client you can pause real-time protection to prevent the files from being detected and deleted, save them to a disk and email them to samples[at]eset.com in an archive encrypted with the password "infected". Quote Link to comment Share on other sites More sharing options...
Owais Aziz 0 Posted February 7 Author Share Posted February 7 (edited) These are the files hitting user mailbox in apple mail app Sample.zip Edited February 7 by Owais Aziz Quote Link to comment Share on other sites More sharing options...
Administrators Marcos 4,614 Posted February 8 Administrators Share Posted February 8 The detection is correct, all these PDF files are cryptocurrency scam. Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.