Jump to content

Malware.AI.1254230990


bjm

Recommended Posts

Please advise has AI detection been fixed?....remains under review?

Malwarebytes static scan
Version: 4.3.0.98
Components Version: 1.0.1217
Update Package Version: 1.0.38351
License: Premium
Objects Scanned: 1
Threats Detected: 0

File: tomb4.exe
File size: 1.77 MB (1,851,392 bytes)
MD5 checksum: 1D97D0BDE7A64CB81DEB31F547B471A1
SHA1 checksum: 403522D7E43F9508D082F5B83ACDBFC4FA5F312D
SHA256 checksum: 4AC9D22DC556E4D485C8A1E46FD556311605D4D4AB414A24ED7CA19211FB811A

My understanding is that VirusTotal uses the command-line scanner versions of the products that support VirusTotal. Some of the solutions included in VirusTotal are configured according to the parameters requested by the vendor, with a more aggressive level of heuristic detection than the official end-user default configuration would offer. 

Link to post
Share on other sites

41 minutes ago, bjm said:

Yes, (same) sample is not detected locally.

You are correct about the following.

20 hours ago, bjm said:

My understanding is that VirusTotal uses the command-line scanner versions of the products that support VirusTotal. Some of the solutions included in VirusTotal are configured according to the parameters requested by the vendor, with a more aggressive level of heuristic detection than the official end-user default configuration would offer. 

Malwarebytes has no control on the Virus Total results. They usually change (get removed) after several days.

  • Thanks 1
Link to post
Share on other sites

5 minutes ago, Porthos said:

You are correct about the following.

Malwarebytes has no control on the Virus Total results. They usually change (get removed) after several days.

Okay....regarding "no control on the Virus Total results".

My understanding .... Malwarebytes command-line engine employs different configuration and detection techniques/heuristics which might detect more than the commercial product. Malwarebytes employs false-positive suppression mechanisms in the commercial product which are not present in the Virus Total command-line engine.

With my opening post Malware.AI.1254230990 detection was reported with my Malwarebytes commercial product, as with Virus Total.  
So, either AI detection evolved over time or Malwarebytes manually changed detection with commercial product.  

Thanks

 

Link to post
Share on other sites

4 minutes ago, bjm said:

So, either AI detection evolved over time or Malwarebytes manually changed detection with commercial product.  

This is correct. The installed product is clear now. Because of the "AI" detection, these can fix themselves as the AI adapts.

Edited by Porthos
  • Thanks 1
Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.