Jump to content

Machine Learning/Anomalous.94%


ChAos48
 Share

Recommended Posts

  • Staff

Hi,

This is detected by our MachineLearning engine, which helps to protect even better against 0day threats. Unfortunately, as this is a heuristic engine, it's possible False Positives happen. Thanks for reporting these, as this helps to finetune the engine, so these won't be detected in the future anymore.


Can you send me some more of these same files, eg DINGLEBACKUP UPDATER.EXE, HOUNDING UPDATER.EXE? As this helps to finetune it.

Thanks!

Link to post
Share on other sites

  • Staff

Thanks.

This helps. For future reference, whenever you create a new build - can you send us the files, so we can also add it to our learning process? This since newer ones *might* become detected again. While "developing/updating", I suggest you have the folder where you have these files located excluded from detection. Then once you have the "final build", before sharing with others, please send them to us first :)

 

Thanks!

Link to post
Share on other sites

5 hours ago, miekiemoes said:

Hi,

..as this helps to finetune the engine

 

If the "Machine Learning/Anomalous" detected a banal C# program as "0 day malware" with a probability of 94%,  you need more than "fine tuning".

Maybe starting from scratch.

Link to post
Share on other sites

  • 11 months later...
  • 2 years later...
  • Staff

Hi,

I can't reproduce detection. Our engine format and configuration in VirusTotal is different than our consumer and corporate products’ default configuration. In VirusTotal we use a command-line engine with different configuration and detection techniques/heuristics which might detect more than the commercial product. There are also false-positive suppression mechanisms in the commercial product which are not present in the command-line engine in VirusTotal.

This file has been whitelisted for our commercial products already and it is not detected anymore. This will eventually fix itself in Virustotal as well, as we don't have control over this.

Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
 Share

  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.