04-20-2022 03:53 AM
Hi,
Our partner's file is falsely detected by PaloAlto as Generic.ml, which is the only AV detection on the file so clearly its a false positive.
Please remove the detection ASAP.
Link to VT: https://www.virustotal.com/gui/file/20d83ea8e5af8fe3d91e45013045e0e3e66002d9f0fc0cdf124a26508b548065
SHA256: 20d83ea8e5af8fe3d91e45013045e0e3e66002d9f0fc0cdf124a26508b548065
Here is a link to download the product (password "infected"): https://dy8hs5q74vnzo.cloudfront.net/FileSharing/setup_fp.exe.zip
Thank you.
04-20-2022 04:14 PM
We've submitted a re-analysis of the sample and a verdict change with our engineering team.
04-20-2022 05:47 PM
The verdict has been flipped to benign and the signature is disabled in the AV package that'll be released on 4/22. Once available have the AV updated.
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!
