https://live.paloaltonetworks.com/t5/virustotal/virus-win32-wgeneric-clqdkh/m-p/492221#M2131 <P>Alert name:&nbsp;<SPAN>Virus/Win32.WGeneric.clqdkh</SPAN></P><P>Hash:(sha256):&nbsp;<SPAN>354ef16a451f716c8cb3b47ced9878d8962088c143dfa2cf01f4f2ddfc70c097</SPAN></P><P>&nbsp;</P><P>I've checked the hash file for the the alert name through the&nbsp;<A href="https://threatvault.paloaltonetworks.com/" target="_blank">https://threatvault.paloaltonetworks.com/</A>&nbsp;and I got the hash on it.</P><P>After checking this hash on Virustotal, the result is "No Matches found".</P><P>My questions:</P><P>1) If no matches found result, does it mean that the hash is new?</P><P>2) How may i determine if is it false positive or malicious?<BR /><BR />I checked similar cases regarding on&nbsp;Virus/Win32.WGeneric and they says that this is a false positive.<BR />Give me some thoughts and ideas about this for additional knowledge as i'm starting on this role as a cyber security.&nbsp;</P><P>&nbsp;</P><P>Thank you in advance!</P><P>&nbsp;</P><P>&nbsp;</P> Thu, 26 May 2022 06:15:17 GMT EJaspe 2022-05-26T06:15:17Z https://live.paloaltonetworks.com/t5/virustotal/virus-win32-wgeneric-clqdkh/m-p/492221#M2131 <P>Alert name:&nbsp;<SPAN>Virus/Win32.WGeneric.clqdkh</SPAN></P><P>Hash:(sha256):&nbsp;<SPAN>354ef16a451f716c8cb3b47ced9878d8962088c143dfa2cf01f4f2ddfc70c097</SPAN></P><P>&nbsp;</P><P>I've checked the hash file for the the alert name through the&nbsp;<A href="https://threatvault.paloaltonetworks.com/" target="_blank">https://threatvault.paloaltonetworks.com/</A>&nbsp;and I got the hash on it.</P><P>After checking this hash on Virustotal, the result is "No Matches found".</P><P>My questions:</P><P>1) If no matches found result, does it mean that the hash is new?</P><P>2) How may i determine if is it false positive or malicious?<BR /><BR />I checked similar cases regarding on&nbsp;Virus/Win32.WGeneric and they says that this is a false positive.<BR />Give me some thoughts and ideas about this for additional knowledge as i'm starting on this role as a cyber security.&nbsp;</P><P>&nbsp;</P><P>Thank you in advance!</P><P>&nbsp;</P><P>&nbsp;</P> Thu, 26 May 2022 06:15:17 GMT https://live.paloaltonetworks.com/t5/virustotal/virus-win32-wgeneric-clqdkh/m-p/492221#M2131 EJaspe 2022-05-26T06:15:17Z https://live.paloaltonetworks.com/t5/virustotal/virus-win32-wgeneric-clqdkh/m-p/492720#M2132 <P>Hello,</P><P>This forum is for non-customers to request that their files be manually reviewed.&nbsp;&nbsp;<BR /><BR />If you have a support license then please open a case with the threat team, Product/Problem area = Threat.<BR /><BR />You can also get the actual file that is being deemed malicious and review the file, is this a file from your DEV team and they are creating a new program?&nbsp; Basically what is this file?&nbsp;&nbsp;<BR /><BR />There is a possibility this could be a signature collision.&nbsp; Meaning, the file you have matches the signature we have for an actual malicious file.&nbsp; However, you file maybe benign.&nbsp;&nbsp;<BR /><BR />Do you own this file?&nbsp; Does this file come from your company/organization?</P> Thu, 26 May 2022 17:31:42 GMT https://live.paloaltonetworks.com/t5/virustotal/virus-win32-wgeneric-clqdkh/m-p/492720#M2132 DaBone 2022-05-26T17:31:42Z