Jump to content

New Banker Don't Detect With Immunet


etms51

Recommended Posts

Hallo i found a new attachment don't detect with immunet, please add to your database.

 

File name: iToken3.1.25.exe

MD5 : befff01f2b5e4dedd0bf3d6c935ecdda

SHA1 : a9c998333a5214333b47fb58bd9a01b3f637c02f

SHA256: 5d0465aab35b015a6c725c53342dd8558a985447f4bb853c0a176ecd3e4d6092

 

Virustotal:http://www.virustotal.com/file-scan/report.html?id=5d0465aab35b015a6c725c53342dd8558a985447f4bb853c0a176ecd3e4d6092-1302104521

 

 

please add to your database.

 

File Added and Removed here.

Orlando

Link to comment
Share on other sites

Hallo i found a new attachment don't detect with immunet, please add to your database.

 

File name: iToken3.1.25.exe

MD5 : befff01f2b5e4dedd0bf3d6c935ecdda

SHA1 : a9c998333a5214333b47fb58bd9a01b3f637c02f

SHA256: 5d0465aab35b015a6c725c53342dd8558a985447f4bb853c0a176ecd3e4d6092

 

Virustotal: http://www.virustota...3c66-1302091353

 

 

please add to your database.

Hi etms51,

If You are uncertain, if Your file is infected or not, You can have itanalyzed. If the file is regarded as clean, the file will not be subject to anyscan by Immunet.

 

1.) IF YOU NEED ANIMMEDIATE ANALYZIS WITH RESULT, FOR EXAMPLE DURING WEEKENDS & HOLIDAYS:

 

1a.) Download &install the freeware VirusTotal (VT) Uploader 2.0 from here:

 

http://virustotal-up...n.softonic.com/

 

Using this simple freeware You may upload the file to VT website, where42 different Antivirus & Antimalware products will immediately analyze thefile. After a few seconds You will from VT get a report, that lists if anyproducts regard Your file as infected or not. The products, that have foundYour file to be infected, will also give their names of the infection. Manyproducts call the infection differently by using their own vocabulary. If onlya few of the products report Your file to be infected, You may regard theinfection to be a "false postive". Note, that results from some ofthe products are more reliable than from others. (Some of the products areknown for reporting "false positives"!) Finally, it is up to Yourselfto treat the file as clean or infected!

 

1b.) If you regard thefile to be clean, it can be placed in a sort of "whitelist" in theImmunet software:

 

Product->Settings->Protection Exclusions-> Add New Exclusion.

 

You must here enter the path to the file, and the full path will beadded as a new line to the list of exclusions. Note, that to the right of theline is an (x)! If You change Your mind and want, that the path would bescanned by Immunet again, it can be deleted by clicking on the (x)- sign andthe path (line) will disappear from the list.

 

Remember to click on the "Apply" button, otherwise yoursettings will not be saved!

 

2.) IF YOU DON'T NEEDA PROMPT ANALYZIS, AND YOU CAN WAIT UNTIL WORKDAYS MON-FRI 9-15, YOU CANPREFERABLY HAVE YOUR FILE HANDLED BY THE IMMUNET STAFF:

 

2a.) Submit Yoursuspicious file (false postive) here:

 

http://www.immunet.c...tact/index.html

 

2b.)If the analysis by Immunet regards the file as a "false positive",this will be reported to the Immunet database (the Cloud), and all furtherscans by Immunet will treat the file as clean. Note, that the file does not have to be on theExclusion list any more now! If the Immunet analysis regards the file to beinfected, this will be reported to the Immunet database (the Cloud). A scan byImmunet will then place the file in Quarantine. Note, that if You personallystill regard the file as clean, you must add it to Your own exclusion list (seeitem 1b. above)

 

3.) REMEMBER

 

Note, that if You havein emergency case used alternative 1.) above, you should later anyhow followthe instructions as per alternative 2.) as well. This is important, so that thewhole Immunet communty gets proper online info from the common database (theCloud)!

 

Cheers,

sweidre

Link to comment
Share on other sites

Archived

This topic is now archived and is closed to further replies.

×
×
  • Create New...