Jump to content

Reported a suspicious item but nothing so far...

novice

By novice
in Malware Finding and Cleaning

 Share
Go to solution Solved by novice,

Recommended Posts

novice

novice 20

Posted
Posted (edited)

Hi,

 

MBAM reported a certain file ( Xdr.exe) as malicious; on check on VirusTotal  detection ratio was only 2 /57.

 

Checking later , detection rate was 5/57, then 8/57, then 10/57 and now 12/57, see :

 

https://www.virustotal.com/en/file/cce957569074ae590efdd45e774b004d3cd95e1643581fd9e7c5ea548745c155/analysis/

 

 

I reported the item to ESET, but so far ESET doesn't show any detection.

 

I would expect for something reported, the signature would be generated faster.

 

Thanks!

post-1289-0-70683800-1424094237_thumb.jpg

Edited by novice
  • Administrators
Marcos

Marcos 5,731

Posted
  • Administrators
Posted

It's a kind of downloader. It wouldn't work at the moment and the url from which it downloaded payload was blocked a month before the file was submitted to VirusTotal. That said, ESET users have been protected.

  • Solution
novice

novice 20

Posted
  • Author
  • Solution
Posted

As of this morning, (Feb17) , xdr.exe is detected by ESET as " Win32/TrojanDownloader.Agent.BCH Trojan"

Guest
This topic is now closed to further replies.
 Share
Go to topic listing

  • Recently Browsing   0 members

    • No registered users viewing this page.
×
×
  • Create New...