1 of 1 people found this helpful
The submission if done correctly as per http://vil.nai.com/vil/submit-sample.aspx OK see vinoo replied same time as I did. Will leave below in case others need the correct submission method.
ie passworded protected zip password infected you should get an immediate reply back with an analysis ID number. Retry it and post teh analysis ID number here and I will ping a lab tech. False positive posts should be in the artemis forum but this is also a getsusp query so will leave this here .
When you get the reply immediately reply back as follows
Prefix the email subject line with the word FALSE. For example:
FALSE: In-house file being detected by McAfee add detection name
you could also add NOAUTO to prevent an automatic reply
Post the analysis ID here
The sample is digitally signed - so GetSusp ignored it. I've escalated it internally for review and will update this thread with the analysis results.
thank you for your help, do you need me to send in the files again, or do you have them somewhere?
Was able to locate the file using the Artemis detection name.
The false on the file has been suppressed. Please re-scan the file in half hour from now.
Thank you very much for helping speed this along. I have a lot of files that work with that file, that are still being flagged with an Artemis flag, is there a wgite to get white listed by using the digital signature, or do I have to submit each file. If I need to submit allthe files, where can I submit them to.
Thanks for all your help.
I sent you a private message with my contact details. Send the details asked for and we'll take it from there.
Thanks, will do