1 Reply Latest reply on Jun 7, 2014 2:46 AM by Peacekeeper

    False Artemis!64F5EE8DAA61

    vrad

      Hello everyone.

      On 19 april I bought a game in Steam and my VSE cleaned .exe file:

       

      4/19/2014           11:09:22 PM       Deleted              NT AUTHORITY\SYSTEM                             

      D:\backup\Steam\steamapps\common\insurgency2\insurgency.exe   Artemis!64F5EE8DAA61 (Trojan)

       

      VSE 8.8.0 build 1247 (patch 4)

      DAT 7412

      Engine 5600.1067

       

      I tested this file on virustotal: 3 / 50, only Bkav, Rising and TrendMicro-HouseCall detected virus in this file.

      https://www.virustotal.com/en/file/e0c73d845d6285e939d01b7ffa6c126545511ac9d4c4e d274ad20fe7715e8b19/analysis/1398149407/

       

      According to this guide https://community.mcafee.com/thread/2016 I sended sample to 'virus_research@mcafee.com'

       

      Answer was:

       

      - - - - - - - - - - - - - - - - - - - -

      McAfee Labs - Beaverton                                                              

      Current Scan Engine Version:5600.1067                                                

      Current DAT Version:7413.0000                                                        

      Thank you for your submission.                                                       

       

      Analysis ID: 8071640

       

      File Name           Findings                      Detection                   Type         Extra

      --------------------|------------------------------|---------------------------- |------------|-----

      insurgency.exe     |inconclusive                 |                           |            |no  

       

      inconclusive [insurgency.exe]                                                                     

       

      Automatedanalysis was not able to determine that this file is malware. This file is  

      being sent for further processing and the DAT files willpotentially be updated if    

      detection of this sample is warranted.

      - - - - - - - - - - - - - - - - - - - -

       

      I did not recieve any info from McAfee at this time.

      This file still detected and cleaned by On-Demand Scan.

       

      So I have false-positive Artemis!64F5EE8DAA61

      Analysis ID: 8071640

       

      Please assist.

      Thanks for your time and have a nice day.

       

      Message was edited by: vrad on 4/22/14 2:20:30 AM CDT

       

      Message was edited by: Ex_Brit on 06/06/14 6:38:49 EDT PM