cbowers 0 Posted July 29, 2015 Share Posted July 29, 2015 I'm just trying to understand the lag here with most of the vendors including Eset. See: hxxp://www.securityweek.com/russian-hacker-tool-uses-legitimate-web-services-hide-attacks-fireeye Given this pretty much bypasses most of our detection other than ESET Endpoint, and the hashes have been known for a few weeks now: https://www.virustotal.com/en/file/8995535721ebeaf6983c6cecf3182d756ca5b3911607452dd4ba2ad8ec86cf96/analysis/ Why the delay for signature detection? Link to comment Share on other sites More sharing options...
Administrators Marcos 5,231 Posted July 30, 2015 Administrators Share Posted July 30, 2015 There are not really many AV vendors that detect this malware and ESET does as you can see on VirusTotal. We've received the file yesterday and a detection was added immediately. Link to comment Share on other sites More sharing options...
Recommended Posts