Owais Aziz 0 Posted February 6 Share Posted February 6 We are receiving multiple notifications from our one user device "PDF/Phishing.A.Gen detection " Eset endpoint security mac unfortunately no option to do advance analysis or upload it directly from eset cloud portal to eset team nor we can download the file for investigation Link to comment Share on other sites More sharing options...
Most Valued Members Nightowl 198 Posted February 7 Most Valued Members Share Posted February 7 If the file is newly seen and feedback is enabled with ESET , then ESET would upload it automatically but as I've seen it is spam box mails that have those detections. Link to comment Share on other sites More sharing options...
Administrators Marcos 4,935 Posted February 7 Administrators Share Posted February 7 Please provide such PDF file. You can either submit it to ESET as per https://support.eset.com/en/kb141 or upload it here and I'll check it out. Link to comment Share on other sites More sharing options...
Owais Aziz 0 Posted February 7 Author Share Posted February 7 How can i download or upload these files directly to eset ? I dont want to take remote session of user pc is there any way ? Link to comment Share on other sites More sharing options...
Administrators Marcos 4,935 Posted February 7 Administrators Share Posted February 7 Since it's mailboxes with messages where the detection occurred, they can be quite big to send. If you can find the exact message(s) with PDF files that were detected in your email client you can pause real-time protection to prevent the files from being detected and deleted, save them to a disk and email them to samples[at]eset.com in an archive encrypted with the password "infected". Link to comment Share on other sites More sharing options...
Owais Aziz 0 Posted February 7 Author Share Posted February 7 (edited) These are the files hitting user mailbox in apple mail app Sample.zip Edited February 7 by Owais Aziz Link to comment Share on other sites More sharing options...
Administrators Marcos 4,935 Posted February 8 Administrators Share Posted February 8 The detection is correct, all these PDF files are cryptocurrency scam. Link to comment Share on other sites More sharing options...
Recommended Posts