cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Highlighted
notenuf
Level 7
Report Inappropriate Content
Message 1 of 8
‎08-14-2011 03:02 AM

How the Artemis works?

Jump to solution

Explain to me why when I send a suspicious file for review in McAfee Lab, and the file is recognized as a "Generic.TRA" and i recive Extra.dat, it is not added to "Artemis" detection ? it would be so easy and so fast ! how the Artemis works?

0 Kudos
Reply
1 Solution

Accepted Solutions
Highlighted
SamSwift
Level 12
Report Inappropriate Content
Message 6 of 8
‎08-22-2011 02:36 AM

Re: How the Artemis works?

Jump to solution

Not all files would trigger an artemis lookup, we need to see certain suspicious criteria occurring before the lookup is done. Generic.tra is a different beast, it's a MD5 based driver for the specific file you submitted - that doesn't necessarily mean that detection would be automatically be added to artemis, although in many cases this does happen.

HTH

Sam

View solution in original post

0 Kudos
Reply
7 Replies
Highlighted
exbrit
MVP
Report Inappropriate Content
Message 2 of 8
‎08-14-2011 07:57 AM

Re: How the Artemis works?

Jump to solution

I moved this to Artemis Discussion so one of their staff will notice it and hopefully help you..  Posting the Artemis number might help.

Message was edited by: Ex_Brit on 14/08/11 12:00:30 EDT PM
0 Kudos
Reply
Highlighted
hemantk
Level 12
Report Inappropriate Content
Message 3 of 8
‎08-16-2011 02:09 AM

Re: How the Artemis works?

Jump to solution

Hello notenuf.

Please go through the below link this will help you............

https://kc.mcafee.com/content/tutorials/artemis/vse_rc_kb53732_enabling_artemis.htm

You can also refer the Attached Doc.for more details........

Message was edited by: hemantk on 8/16/11 4:19:54 AM CDT
Reply
Highlighted
nchattop
Level 12
Report Inappropriate Content
Message 4 of 8
‎08-17-2011 07:43 PM

Re: How the Artemis works?

Jump to solution

Hi

Please refer our KB Article for mor info: https://kc.mcafee.com/corporate/index?page=content&id=KB53735

Basically Artemis looks for any suspicious files and detect as Artemis!xxxxx, it could be both accuarte detection or false too. If you come across please send us the sample

http://www.av-comparatives.org/seiten/ergebnisse/mcafee_artemis.pdf

thanks

Neha C

McAfee SME

0 Kudos
Reply
Highlighted
notenuf
Level 7
Report Inappropriate Content
Message 5 of 8
‎08-20-2011 06:57 AM

Re: How the Artemis works?

Jump to solution

Try not to read only the title, do not waste your time on useless "answers" ... Did I write that Artemis is not working? I mean that Artemis works strange and illogical.

0 Kudos
Reply
Highlighted
SamSwift
Level 12
Report Inappropriate Content
Message 6 of 8
‎08-22-2011 02:36 AM

Re: How the Artemis works?

Jump to solution

Not all files would trigger an artemis lookup, we need to see certain suspicious criteria occurring before the lookup is done. Generic.tra is a different beast, it's a MD5 based driver for the specific file you submitted - that doesn't necessarily mean that detection would be automatically be added to artemis, although in many cases this does happen.

HTH

Sam

View solution in original post

0 Kudos
Reply
Highlighted
notenuf
Level 7
Report Inappropriate Content
Message 7 of 8
‎09-03-2011 08:35 AM

Re: How the Artemis works?

Jump to solution

I think that Artemis is exactly a particular MD5 file, turns out that Artemis lookup is based on certain criteria heuristic technology? then what kind of criteria? you tell me more about this?

0 Kudos
Reply
Highlighted
pammirab
Level 11
Report Inappropriate Content
Message 8 of 8
‎09-21-2011 03:05 PM

Re: How the Artemis works?

Jump to solution

Hello,

The McAfee Artemis is considered a file reputation, which makes part of our GTI or Global Threat Intelligence. Once customers have the McAfee Artemis Technology enabled on their endpoint products, Artemis Is responsible to send fingerprints of the files to the cloud, which also receives data from other vectors, like Web, Email and Network.

Once the fingerprints are submitted to the cloud, they are compared with the database existent in the cloud as well as analyzed based on its characteristics, MD5, by our threat research team dedicated solely to GTI, etc. After that, we correlate data from all threat vectors.  The GTI cloud after matching the incoming streams with known or suspected threats, returns to the supported products a unique perspective on what is happening at each touch point.

Best Regards,

Patty

0 Kudos
Reply

Community Help Hub

    New to the forums or need help finding your way around the forums? There's a whole hub of community resources to help you.

  • Find Forum FAQs
  • Learn How to Earn Badges
  • Ask for Help
Go to Community Help

Join the Community

    Thousands of customers use the McAfee Community for peer-to-peer and expert product support. Enjoy these benefits with a free membership:

  • Get helpful solutions from McAfee experts.
  • Stay connected to product conversations that matter to you.
  • Participate in product groups led by McAfee employees.
Join the Community
Join the Community


Corporate Headquarters
2821 Mission College Blvd.
Santa Clara, CA 95054 USA

Consumer Support   |   Enterprise Support   |   McAfee.com

Legal   |   Privacy   |   Copyright © 2019 McAfee, LLC