VirusTotal
Have you encountered a false positive verdict for Palo Alto Networks (Known Signatures) on VirusTotal? Use this forum to submit a verdict change request. Change requests should include the File Hash, Link to VirusTotal report, current VirusTotal verdict, and description.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
VirusTotal
Have you encountered a false positive verdict for Palo Alto Networks (Known Signatures) on VirusTotal? Use this forum to submit a verdict change request. Change requests should include the File Hash, Link to VirusTotal report, current VirusTotal verdict, and description.
About VirusTotal

Welcome to the VirusTotal discussion forum. This forum exists as a place to submit verdict review requests for False Positive verdicts for Palo Alto Networks (Known Signatures) seen on VirusTotal. All posts to this forum must be properly structured in order to be reviewed by our team.

For an introduction to the forum, please see the sticky!

Disclaimer:
This forum is not a customer support venue. Palo Alto Networks staff will not engage in active discussions on this forum. Our staff will ingest properly formatted submissions for review and update Palo Alto Networks (Known Signatures) verdicts when appropriate. For information on contacting Palo Alto Networks support, click here.

Discussions

VirusTotal Verdict Change Request for False Positive

Sticky post for VirusTotal Discussion Forum.

 

This forum is here to enable those who are not Palo Alto Networks customers to submit a false positive verdict change request for a Palo Alto Networks verdict on VirusTotal. (i.e. malware or malicious

...

brcook by L2 Linker
  • 9801 Views
  • 0 replies
  • 5 Likes

False Positive (Generic.ml): ReimagePackage1956x64.exe

Hi, I would like to report a false positive detection by Palo Alto Networks of the following file:

 

File Hash:

MD5: 24C2A9B79DF62647B98A8FACCCAE83A5
SHA1: 6A16D19413C6E1856CD50861A4F7736E7947BE37
SHA256: BF9C7FC21C84225E31113DD6C0637470EAB67E6120E69E20C2

...

kns123 by L2 Linker
  • 2483 Views
  • 2 replies
  • 0 Likes

Resolved! Please check and remove false positive

Hello,

 

yesterday we released an updated file of an self-written application.

On VirusTotal.com it is detected as malicious (generic). Of course it is not malicious.

 

I would be glad if you could check that:

https://www.virustotal.com/gui/file/efa54f1dc2

...

jm1979 by L1 Bithead
  • 6689 Views
  • 11 replies
  • 0 Likes

False positive: Generic.ml

File Hash: a80e088a804af6e6c81e4089fbcde4ee9d5cf8b0ca5c05ba24090cee5fc97a3d

Link to Virustotal report for the file: https://www.virustotal.com/gui/file/a80e088a804af6e6c81e4089fbcde4ee9d5cf8b0ca5c05ba24090cee5fc97a3d/details

Current VirustTotal Verdict

...

gsteam by L1 Bithead
  • 2458 Views
  • 2 replies
  • 0 Likes

False Positive

File Hash: 821ffe523f5da0959889301cc9afaa3e0260609f2d6b94c530f66f0e6e94b273

Link to Virustotal report for the file: https://www.virustotal.com/gui/file/821ffe523f5da0959889301cc9afaa3e0260609f2d6b94c530f66f0e6e94b273/detection

Current VirustTotal Verdi

...

ijmilton by L0 Member
  • 2856 Views
  • 3 replies
  • 0 Likes

Please check and resolve this FP

File Hash:2fe0d8178373648741ba07e649be0c900425641ab0395954c1353e3975d112e8

Link to Virustotal report for the file: https://www.virustotal.com/gui/file/2fe0d8178373648741ba07e649be0c900425641ab0395954c1353e3975d112e8/detection

Current VirustTotal Verdic

...

Xiayutu by L1 Bithead
  • 2499 Views
  • 2 replies
  • 0 Likes

False Positive

Hi, 

 

Users trying to update AdobeCC are getting blocked, the PA seems to think the below files are wildfire-virus, but when uploaded to WF they are tagged as benign.

 

http://ccmdl.adobe.com/AdobeProducts/KCCC/1/win32/packages/ACCC_4_1_1_utils_202/Util

...

BizBo by L2 Linker
  • 4324 Views
  • 2 replies
  • 1 Likes

False Positive Removal Request

Hi,

 

Could you please white-list our software installer as it's marked as generic.pup on virustotal.com website which should be a false-positive.

 

1/ File Hash: 8ea9dff8dfb90b605eba72b4b803b178f06df5c336c2e74bc329660f12ff93ea

Link to Virustotal for the

...

False Positive Removal Request

Hi,

 

Could you please white-list our software installer as it's marked as generic.pup on virustotal.com website which should be a false-positive.

 

1/ File Hash: bf9e2a6a898b606350ab4301df8009e6150e6a15b128c2b123a9ae751d5bd1e7

Current VT Verdict: generic

...

False positive: Generic.ml

 
 

File Hash: f90ba2bc94eaf8e9b1a5ef39a9247b696b1619e77491751091412e126060f863

Link to Virustotal report for the file: https://www.virustotal.com/gui/file/f90ba2bc94eaf8e9b1a5ef39a9247b696b1619e77491751091412e126060f863/details

Current VirustTotal Verdi

...

gsteam by L1 Bithead
  • 2171 Views
  • 1 replies
  • 0 Likes

Resolved! False Positive Submission (Generic.ml)

Dear Support,

I would like to report a false positive detection on VirusTotal for our product, 5 minutes after release.

The program is clean, signed by a trusted party and doesn't contain any unwanted behavior.

 

  • File type: win32.exe
  • SHA256: 754a64c9d7911
...

danaix by L1 Bithead
  • 4927 Views
  • 7 replies
  • 0 Likes

False Positive Report: In-House Software wrongly detected

Greetings,

 

The newest version of our flagship software 'E-Marking.exe' was mistakenly detected by your engine on virustotal.com as Generic.ml

Please help us rectify the false positive.

 

File Hash: 0c7ff694bd7328ac7c25ef23af340d8bc19004c9c8dfabcb832bfd3

...

False positive RC2Http.exe: Generic.ml

Hello,

 

I am a representative of the company of ZennoLab.
One of the files of our program (RC2Http.exe) is mistakenly accepted by your antivirus as a virus (Generic.ml).
Please correct the situation.

 

File Hash: e91fd9f2b4d698808eb0a9c117c12f7b4b75d45c9d

...

Demeer84 by L1 Bithead
  • 2513 Views
  • 2 replies
  • 0 Likes

False Positive Report: EQU8 Anti-Cheat

Palo-Alto triggers a false-positive on the EQU8 Anti-Cheat service.

 

https://www.virustotal.com/gui/file/449d9cccbb4ae831a46b2bf8c90adf655e4d986ae9b4a2075e4ee79e469d31e3/detection

 

Please whitelist the certificate and not the filehash as we regularly r

...

  • 729 Posts
  • 59 Subscriptions