Hi, I have about 50 files with malware that clamav currently hasn't have in database. I send those files some time ago to virusdb maintainers, but many of them are undetectable today:
Known viruses: 30975 Scanned directories: 16 Scanned files: 65 Infected files: 11 Data scanned: 8.79 MB I/O buffer size: 131072 bytes Time: 7.524 sec (0 m 7 s) So I want create those sigs but my skillindex is at 0% level :/ Can users who have experience with catching and creating malware sigs point me to useful docs/tools? I started .HDB (md5) sigs but not all malware could be catched with this way. My biggest problem is to: how to catch evil code inside binary file. -- best regards q# _______________________________________________ http://lurker.clamav.net/list/clamav-users.html
