https://live.paloaltonetworks.com/t5/virustotal/palo-alto-networks-generic-ml-jrs-sle-exe/m-p/252805#M917 <P>The hash is correct, but some explanation is in order. Yesterday, I noticed that the file listed on VirusTotal was a little out of date, so I uploaded the current version (which will soon be updated again) and the detection results changed. Now, 6 out of 64 engines detect it as malware, and Palo Alto Networks is not listed as detecting it or showing it as clean.</P><P>&nbsp;</P><P>Perhaps you have some idea why it's not appearing in either group now.</P> Fri, 08 Mar 2019 04:10:19 GMT jrs-soft 2019-03-08T04:10:19Z https://live.paloaltonetworks.com/t5/virustotal/palo-alto-networks-generic-ml-jrs-sle-exe/m-p/252572#M912 <P>I'm reporting a false positive for the file: JRS_SLE.EXE. On Virustotal.com Palo Alto Networks flags the file as "generic:ml" when, in fact, the program is harmless. It's actually part of our anti-piracy protection. I wrote and compiled the program. Furthermore, the file is signed by Jurik Research Software, Inc. with a digital certificate. If Palo Alto Networks need a copy of the file or further information, let me know.</P> Wed, 06 Mar 2019 20:50:32 GMT https://live.paloaltonetworks.com/t5/virustotal/palo-alto-networks-generic-ml-jrs-sle-exe/m-p/252572#M912 jrs-soft 2019-03-06T20:50:32Z https://live.paloaltonetworks.com/t5/virustotal/palo-alto-networks-generic-ml-jrs-sle-exe/m-p/252574#M913 <P>Hello,&nbsp;</P><P>&nbsp;</P><P>Please provide the following information so that we may assist you further:</P><P>&nbsp;</P><P>File Hash: &lt;hash&gt;</P><P>Link to Virustotal report for the file: &lt;link&gt;</P><P>Current VirustTotal Verdict: &lt;verdict&gt;</P><P>&nbsp;</P> Wed, 06 Mar 2019 21:52:13 GMT https://live.paloaltonetworks.com/t5/virustotal/palo-alto-networks-generic-ml-jrs-sle-exe/m-p/252574#M913 tdavault 2019-03-06T21:52:13Z https://live.paloaltonetworks.com/t5/virustotal/palo-alto-networks-generic-ml-jrs-sle-exe/m-p/252579#M914 <P>Thanks for the repy.</P><P>&nbsp;</P><P>SHA-256 19d4d041a07c50fdf3a828f2676869d99ac14fb13f43ca8d3c66fc9a6daabe91</P><P>&nbsp;</P><P><A href="https://www.virustotal.com/#/file/19d4d041a07c50fdf3a828f2676869d99ac14fb13f43ca8d3c66fc9a6daabe91/detection" target="_blank">https://www.virustotal.com/#/file/19d4d041a07c50fdf3a828f2676869d99ac14fb13f43ca8d3c66fc9a6daabe91/detection</A></P><P>&nbsp;</P><P>I'm not sure what you mean by verdict, but 8 of 69 malware engines falsely detect the file as being malware.</P><P>&nbsp;</P> Wed, 06 Mar 2019 22:11:31 GMT https://live.paloaltonetworks.com/t5/virustotal/palo-alto-networks-generic-ml-jrs-sle-exe/m-p/252579#M914 jrs-soft 2019-03-06T22:11:31Z https://live.paloaltonetworks.com/t5/virustotal/palo-alto-networks-generic-ml-jrs-sle-exe/m-p/252769#M916 <P>I don't see any generic:ml for that sample for Palo Alto Networks. We have made no changes.</P><P>Do you have the right sha256?</P> Thu, 07 Mar 2019 21:36:00 GMT https://live.paloaltonetworks.com/t5/virustotal/palo-alto-networks-generic-ml-jrs-sle-exe/m-p/252769#M916 mivaldi 2019-03-07T21:36:00Z https://live.paloaltonetworks.com/t5/virustotal/palo-alto-networks-generic-ml-jrs-sle-exe/m-p/252805#M917 <P>The hash is correct, but some explanation is in order. Yesterday, I noticed that the file listed on VirusTotal was a little out of date, so I uploaded the current version (which will soon be updated again) and the detection results changed. Now, 6 out of 64 engines detect it as malware, and Palo Alto Networks is not listed as detecting it or showing it as clean.</P><P>&nbsp;</P><P>Perhaps you have some idea why it's not appearing in either group now.</P> Fri, 08 Mar 2019 04:10:19 GMT https://live.paloaltonetworks.com/t5/virustotal/palo-alto-networks-generic-ml-jrs-sle-exe/m-p/252805#M917 jrs-soft 2019-03-08T04:10:19Z