Jump to content

Another False


Recommended Posts

Hello MBAM community

Here's a false positive detection by the virustotal motor

https://www.virustotal.com/gui/file/52e623666a20ba2a51aee1c214137f6b94333f3618656fca99af2be6c62f5bb8/detection

name of detection : Malware.AI.3230791296

sha256 : 52e623666a20ba2a51aee1c214137f6b94333f3618656fca99af2be6c62f5bb8

link to explanations : https://translate.google.com/translate?sl=fr&tl=en&u=https://genhackmantools.wordpress.com/wucu

link to file : https://www.aht.li/3629787/WUCU.exe

 

Edited by gen-hackman
disabled live hyperlink
Link to post
Share on other sites

Just now, gen-hackman said:

Just to say it's still there this morning

The engine format and configuration in VirusTotal is different than the consumer and corporate products’ default configuration. In VirusTotal Malwarebytes uses a command-line engine with different configuration and detection techniques/heuristics which might detect more than the commercial product. There are also false-positive suppression mechanisms in the commercial product which are not present in the command-line engine in VirusTotal.

This will eventually fix itself in Virustotal as well, as Malwarebytes has no control over this. Virus Total is having trouble reaching Malwarebytes cloud.

Link to post
Share on other sites

If you still see the detection by actually scanning with Malwarebytes,

Please clear your hubble cache by doing the following:

  1. Click on the Malwarebytes icon in the system tray
  2. Select "Quit Malwarebytes"
  3. Navigate to %PROGRAMDATA%\Malwarebytes\MBAMService
  4. Delete the file HubbleCache
  5. Open Malwarebytes
Link to post
Share on other sites

Hello

It alreahy have been done for antoher tool on virustotal, it could be the same with it :)

Otherwise, I don't use protections in my machine, I perfectly know what I do :)

I even totaly deleted windows defender and smartscreen

Regards

Link to post
Share on other sites

2 hours ago, gen-hackman said:

It alreahy have been done for antoher tool on virustotal, it could be the same with it :)

 

10 hours ago, Porthos said:

This will eventually fix itself in Virustotal as well, as Malwarebytes has no control over this. Virus Total is having trouble reaching Malwarebytes cloud.

 

Link to post
Share on other sites

Posted (edited)

yes, I have understood this

I reanalyzed the file , I didn't do anything since, but the detection name have changed

Malware.AI.<Number> => MachineLearning/Anomalous.95%

isn't it funny ? ^^

Edited by gen-hackman
Link to post
Share on other sites

  • 2 weeks later...

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
 Share

  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.