On 09/24/2013 12:25 PM, Joel Esler wrote: > It’s beneficial for you to both. It indicates to us that you care enough to > send us a sample individually and we can work with that, it always helps when > the community provides us with samples! > > -- > Joel Esler > Senior Research Engineer, VRT > OpenSource Community Manager > Sourcefire > > On Sep 21, 2013, at 11:24 AM, Daniel Quintiliani <[email protected]> wrote: > >> Hi, >> >> Occasionally I submit attachments in my Spam folder to ClamAV via the >> ClamAV.net "submit malware" form. >> >> A frequent type of spam message I get are written in Chinese, with Excel >> or Powerpoint files attached, with hexadecimal codes in the file name >> separated by "x". >> >> I scan with VirusTotal first and in most cases there is no malware. Then >> I submit the malware to ClamAV. >> >> The CRDF people told me once that their third-party ClamAV signatures >> makes use of real-time VirusTotal scans. Is the same true of ClamAV's >> official signatures? I frequently get these messages and I'd imagine it >> could be a real time-waster to the ClamAV team who have to frequently >> deal with false positives and other proven malware, rather than the >> potential malware I submit. >> >> Thank you, >> >> -- >> >> -Dan Q >>
OK, good to know I'm not annoying you or being ignored by you. I know a lot of those spam messages are similar. A lot of times my e-mail provider removes the attachment from the message after a few days. Keep up the great work, -- -Dan Q
signature.asc
Description: OpenPGP digital signature
_______________________________________________ Help us build a comprehensive ClamAV guide: https://github.com/vrtadmin/clamav-faq http://www.clamav.net/support/ml
