hi,
being part of the recent phishing-wave about faked german telekom /
vodafone invoices i have submitted the malware offered in the phishing
urls yesterday monrning via
http://www.clamav.net/sendvirus/submit-malware/ when none of the
well-known engines were aware of.
today, more than 24 hours later most of the well-known engines except
clamav are listing the malware-sample as malicious in their signatures.
is there a possibility to help you accepting / getting submitted malware
samples into the signature-database?
the sample in question is
MD5 1b42375867f531e6e98c7a5d7d9455d4
SHA1 1745d651f69acfe45339d500d074ddb615d916c7
SHA256 4fd69490fa074a078be54b56db7046d2f77f8c7ae4825bbbf91a2e27c14532cc
kind regards
max
_______________________________________________
Help us build a comprehensive ClamAV guide:
https://github.com/vrtadmin/clamav-faq
http://www.clamav.net/support/ml
