Jump to content

gatherosstate.exe


Bolt5000

Recommended Posts

Microsoft's official file is detected by Malwarebytes. 

image.png.5f3e793fd8b08ace841d5bff59f923c9.png

 

    File: gatherosstate.exe
  CRC-32: ec3b6d57
   SHA-1: fabb5a0fc1e6a372219711152291339af36ed0b5
 SHA-256: 028c8fbe58f14753b946475de9f09a9c7a05fd62e81a1339614c9e138fc2a21d
 SHA-512: 4e5a6751f5f1f8499890e07a3b58c4040e43cf1329ab8f4a09201e1f247825e334e416717895f6e570842f3d2d6a137c77539c70545329c1ab3118bd83a38226

From Windows 10 Version 1607 ADK

File is attached. 

 

gatherosstate.zip

Link to post
Share on other sites

On 7/22/2021 at 5:07 AM, cli said:

Thanks for reporting, I scanned the file and it's no longer detected. It may take some time for the correct result to show on VT.

One week is passed but results on VT is still the same. Can you please recheck. 

https://www.virustotal.com/gui/file-analysis/MTVjZTA3NTNhMTZkZDRmOWI5ZjBmOTkyNmRkMzdjNGU6MTYyNzQwOTE2MQ==/detection

Link to post
Share on other sites

Just now, Bolt5000 said:

One week is passed but results on VT is still the same. Can you please recheck. 

 

The attached file is not detected by the consumer or commercial versions of Malwarebytes.

The engine format and configuration in VirusTotal is different than the consumer and corporate products’ default configuration. In VirusTotal Malwarebytes uses a command-line engine with different configuration and detection techniques/heuristics which might detect more than the commercial product. There are also false-positive suppression mechanisms in the commercial product which are not present in the command-line engine in VirusTotal.

This will eventually fix itself in Virustotal as well, as Malwarebytes has no control over this. Virus Total is having trouble reaching Malwarebytes cloud.

Link to post
Share on other sites

  • 1 year later...
On 7/27/2021 at 11:39 PM, Porthos said:

 

 

The attached file is not detected by the consumer or commercial versions of Malwarebytes.

 

The engine format and configuration in VirusTotal is different than the consumer and corporate products’ default configuration. In VirusTotal Malwarebytes uses a command-line engine with different configuration and detection techniques/heuristics which might detect more than the commercial product. There are also false-positive suppression mechanisms in the commercial product which are not present in the command-line engine in VirusTotal.

 

This will eventually fix itself in Virustotal as well, as Malwarebytes has no control over this. Virus Total is having trouble reaching Malwarebytes cloud.

 

More than 1 year is passed, issue is not resolved yet. 

Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.