This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences

VirusTotal Veredict False Positive Generic.ml

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements

VirusTotal Veredict False Positive Generic.ml

Go to solution
eugenio.a
L1 Bithead

‎05-06-2020 08:03 AM

File Hash: f4b11f2ea564bcedaef047ddc49e198261dcf764a6b0e4e4ea370e611c7fe01d

Link to Virustotal report for the file: https://www.virustotal.com/gui/file/f4b11f2ea564bcedaef047ddc49e198261dcf764a6b0e4e4ea370e611c7fe01d...

Current VirustTotal Verdict: Generic.ml (1/71)

Description: Hi, the above is a library that we distribute with as part of our solution, we've been using this library for a while and paloalto network is the only engine reporting it as positive. We contacted the author, who denies the existence of malware and claims this to be a false positive. However, this report is undermining the reputation of our product. Can you please verify the false positive claim? Thank You!

0 Likes Likes
2 accepted solutions

Accepted Solutions

Go to solution
mivaldi
L7 Applicator
In response to mivaldi

‎05-07-2020 08:32 AM

The sample was found to be Benign.

View solution in original post

(1)

Go to solution
mivaldi
L7 Applicator
In response to mivaldi

‎05-11-2020 09:50 AM

Sample is now marked Benign.

View solution in original post

(1)
6 REPLIES 6

Go to solution
mivaldi
L7 Applicator

‎05-06-2020 04:30 PM

I placed a request for FP analysis with our Malware analysts. Will let you know what we find.

(1)

Go to solution
mivaldi
L7 Applicator
In response to mivaldi

‎05-07-2020 08:32 AM

The sample was found to be Benign.

(1)

Go to solution
eugenio.a
L1 Bithead
In response to mivaldi

‎05-07-2020 10:13 AM

Thank you for your quick response!

I realized that we submitted the file that was "re-signed" by our company. Would you mind to perform the same action on the original "signed by the author" file? Should I submit a new request? In case you can take it from here, these are the details of it:

 

File Hash: a24f2a1dc8901eb3dbf2425b95d49df4cba8c080dc548077e1275e5ca5567ed5

Link to Virustotal report for the file: https://www.virustotal.com/gui/file/a24f2a1dc8901eb3dbf2425b95d49df4cba8c080dc548077e1275e5ca5567ed5...

Current VirustTotal Verdict: Generic.ml (1/71)

Description: This is the same library you flagged as benign, the only difference is the signature of it. Thank you again!

0 Likes Likes

Go to solution
mivaldi
L7 Applicator
In response to eugenio.a

‎05-07-2020 01:45 PM

It is easier to track if you place a separate request, but I was able to catch this one so you don't need to.

I submitted this other sample to our malware analysts. I will let you know what we find.

0 Likes Likes

Go to solution
mivaldi
L7 Applicator
In response to mivaldi

‎05-11-2020 09:50 AM

Sample is now marked Benign.

(1)

Go to solution
eugenio.a
L1 Bithead
In response to mivaldi

‎05-11-2020 12:58 PM

Thank you!

  • 2 accepted solutions
  • 5696 Views
  • 6 replies
  • 0 Likes
Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!

The LIVEcommunity thanks you for your participation!

LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2024 - Palo Alto Networks