This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
VirusTotal
Have you encountered a false positive verdict for Palo Alto Networks (Known Signatures) on VirusTotal? Use this forum to submit a verdict change request. Change requests should include the File Hash, Link to VirusTotal report, current VirusTotal verdict, and description.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
Please sign in to see details of an important advisory in our Customer Advisories area.
VirusTotal
Have you encountered a false positive verdict for Palo Alto Networks (Known Signatures) on VirusTotal? Use this forum to submit a verdict change request. Change requests should include the File Hash, Link to VirusTotal report, current VirusTotal verdict, and description.
About VirusTotal

Welcome to the VirusTotal discussion forum. This forum exists as a place to submit verdict review requests for False Positive verdicts for Palo Alto Networks (Known Signatures) seen on VirusTotal. All posts to this forum must be properly structured in order to be reviewed by our team.

For an introduction to the forum, please see the sticky!

Disclaimer:
This forum is not a customer support venue. Palo Alto Networks staff will not engage in active discussions on this forum. Our staff will ingest properly formatted submissions for review and update Palo Alto Networks (Known Signatures) verdicts when appropriate. For information on contacting Palo Alto Networks support, click here.

Discussions

Start a conversation

VirusTotal Verdict Change Request for False Positive

Sticky post for VirusTotal Discussion Forum.

 

This forum is here to enable those who are not Palo Alto Networks customers to submit a false positive verdict change request for a Palo Alto Networks verdict on VirusTotal. (i.e. malware or malicious

...

brcook by L2 Linker
  • 8377 Views
  • 0 replies
  • 4 Likes

False Positive

File Hash: 821ffe523f5da0959889301cc9afaa3e0260609f2d6b94c530f66f0e6e94b273

Link to Virustotal report for the file: https://www.virustotal.com/gui/file/821ffe523f5da0959889301cc9afaa3e0260609f2d6b94c530f66f0e6e94b273/detection

Current VirustTotal Verdi

...

ijmilton by L0 Member
  • 2650 Views
  • 3 replies
  • 0 Likes

Please check and resolve this FP

File Hash:2fe0d8178373648741ba07e649be0c900425641ab0395954c1353e3975d112e8

Link to Virustotal report for the file: https://www.virustotal.com/gui/file/2fe0d8178373648741ba07e649be0c900425641ab0395954c1353e3975d112e8/detection

Current VirustTotal Verdic

...

Xiayutu by L1 Bithead
  • 2331 Views
  • 2 replies
  • 0 Likes

False Positive

Hi, 

 

Users trying to update AdobeCC are getting blocked, the PA seems to think the below files are wildfire-virus, but when uploaded to WF they are tagged as benign.

 

http://ccmdl.adobe.com/AdobeProducts/KCCC/1/win32/packages/ACCC_4_1_1_utils_202/Util

...

BizBo by L2 Linker
  • 4096 Views
  • 2 replies
  • 1 Likes

False Positive Removal Request

Hi,

 

Could you please white-list our software installer as it's marked as generic.pup on virustotal.com website which should be a false-positive.

 

1/ File Hash: 8ea9dff8dfb90b605eba72b4b803b178f06df5c336c2e74bc329660f12ff93ea

Link to Virustotal for the

...

False Positive Removal Request

Hi,

 

Could you please white-list our software installer as it's marked as generic.pup on virustotal.com website which should be a false-positive.

 

1/ File Hash: bf9e2a6a898b606350ab4301df8009e6150e6a15b128c2b123a9ae751d5bd1e7

Current VT Verdict: generic

...

False positive: Generic.ml

 
 

File Hash: f90ba2bc94eaf8e9b1a5ef39a9247b696b1619e77491751091412e126060f863

Link to Virustotal report for the file: https://www.virustotal.com/gui/file/f90ba2bc94eaf8e9b1a5ef39a9247b696b1619e77491751091412e126060f863/details

Current VirustTotal Verdi

...

gsteam by L1 Bithead
  • 2052 Views
  • 1 replies
  • 0 Likes

Resolved! False Positive Submission (Generic.ml)

Dear Support,

I would like to report a false positive detection on VirusTotal for our product, 5 minutes after release.

The program is clean, signed by a trusted party and doesn't contain any unwanted behavior.

 

  • File type: win32.exe
  • SHA256: 754a64c9d7911
...

danaix by L1 Bithead
  • 4548 Views
  • 7 replies
  • 0 Likes

False Positive Report: In-House Software wrongly detected

Greetings,

 

The newest version of our flagship software 'E-Marking.exe' was mistakenly detected by your engine on virustotal.com as Generic.ml

Please help us rectify the false positive.

 

File Hash: 0c7ff694bd7328ac7c25ef23af340d8bc19004c9c8dfabcb832bfd3

...

False positive RC2Http.exe: Generic.ml

Hello,

 

I am a representative of the company of ZennoLab.
One of the files of our program (RC2Http.exe) is mistakenly accepted by your antivirus as a virus (Generic.ml).
Please correct the situation.

 

File Hash: e91fd9f2b4d698808eb0a9c117c12f7b4b75d45c9d

...

Demeer84 by L1 Bithead
  • 2307 Views
  • 2 replies
  • 0 Likes

False Positive Report: EQU8 Anti-Cheat

Palo-Alto triggers a false-positive on the EQU8 Anti-Cheat service.

 

https://www.virustotal.com/gui/file/449d9cccbb4ae831a46b2bf8c90adf655e4d986ae9b4a2075e4ee79e469d31e3/detection

 

Please whitelist the certificate and not the filehash as we regularly r

...

Resolved! False Positive Submission Cortex XDR

Hi, I would like to report a false positive detection by Palo Alto Networks of the following file:

 

File Hash:
MD5: 4be43dd969458a0660acd4073c465a50
SHA1: a673a5565cf45a488da571474219e44c98f19c31
SHA256: c735a96fcd9c7ec78f1a70744497d0c0073aa13c90a301436a

...

devtech by L1 Bithead
  • 7343 Views
  • 4 replies
  • 0 Likes

Resolved! False Positive Submission (Generic.ml)

Hello, 

 

I would like to report a false positive detection on VirusTotal for our product, 5 minutes after release.

The program is clean, signed by a trusted party and doesn't contain any unwanted behavior. 

 

  • File type: win32.exe
  • SHA256: d0ce6996e721caf80
...

False Positive Virus Total.PNG

False Positive Submission

Hello!
We have checked our software on VirusTotal and see false positive detection (Generic.ml).
Please check the protected zip file with the sample: https://cloud.connectivegames.com/index.php/s/Xx9mFMWD2Gsgx6H
The archive also contains a link to Virus

...

  • 696 Posts
  • 55 Subscriptions
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2024 - Palo Alto Networks