anjayani 1 Posted June 27 Share Posted June 27 i was testing eset live guard for demo, but the download test file not detected as malware, i download the test file from https://download.eset.com/com/eset/tools/edtd/testing_app/latest/edtdtestfile.zip is there any other sample? Link to comment Share on other sites More sharing options...
rotaru 10 Posted June 27 Share Posted June 27 this is a zipped file password protected. Did you unzipped? Link to comment Share on other sites More sharing options...
ESET Moderators Peter Randziak 1,013 Posted June 27 ESET Moderators Share Posted June 27 Hello @anjayani, have you followed the instructions at https://help.eset.com/elga/en-US/?test_functionality.html, especially the "5.Windows users: To make the file unique, open the command line by pressing Win+R and type powershell. Navigate to the folder with the excluded test file. Run the command below, it adds the current timestamp to the end of the file, and the file gets a new hash: Add-Content .\EdtdTestFile.exe $(date)" part? I tested it myself and the modified file bas been submitted and detected / removed after the analysis. Peter Link to comment Share on other sites More sharing options...
anjayani 1 Posted June 28 Author Share Posted June 28 15 hours ago, Peter Randziak said: Hello @anjayani, have you followed the instructions at https://help.eset.com/elga/en-US/?test_functionality.html, especially the "5.Windows users: To make the file unique, open the command line by pressing Win+R and type powershell. Navigate to the folder with the excluded test file. Run the command below, it adds the current timestamp to the end of the file, and the file gets a new hash: Add-Content .\EdtdTestFile.exe $(date)" part? I tested it myself and the modified file bas been submitted and detected / removed after the analysis. Peter hi peter, yes i do follow that instruction, in the first test its work perfectly, but yesterday (june 26th) is different the sample detected as clean , check picture below.! But after i create this page, i do test again, and the sample detected as malware again. let me guess, the elg learning this sample ,after so much test using this sample the elg machine mark this sample as clean? thanks Link to comment Share on other sites More sharing options...
ESET Moderators Peter Randziak 1,013 Posted June 28 ESET Moderators Share Posted June 28 Hello @anjayani, glad to hear that it works now, so you can be sure that the ELGA is protecting your environment as it should. When it comes to the question why it was not detected, I do not want to speculate / guess so to get an answer it would have to be checked from the logs... Peter Link to comment Share on other sites More sharing options...
Recommended Posts