Since the password has to be included for the victim to be able to
decrypt, it ought to be possible to automatically find the password in
the email. Of course, eventually the criminals will start hiding the
password in some way that a human can easily find it, but non-AI
automation can't.
On
Hi there,
On Tue, 22 Dec 2020, Alessandro Vesely via clamav-users wrote:
Is there anything to do about encrypted viruses?
Yes, indeed there is and it isn't too difficult.
today I received a message with an encrypted zip attachment. I saved the
attachment and loaded it to VirusTotal,
When you submit it, be sure to include the password so that the ClamAV
signature team can properly asses it and provide a hash signature for the zip
file.
-Al-
> On Dec 22, 2020, at 03:32, Alessandro Vesely via clamav-users
> wrote:
>
> Hi all,
>
>
> today I received a message with an
Hi all,
today I received a message with an encrypted zip attachment. I saved the
attachment and loaded it to VirusTotal, where no scanner detected anything:
https://www.virustotal.com/gui/file/2cef2c979e60c1e2892e6a494814dd65db14c2076102279e6e74737d36c115a5/detection
Then I unzipped the file