Clamd does not detect all Makros.
Heino Backhaus
heino.backhaus at fink-computer.de
Wed Oct 19 13:24:51 UTC 2016
Hello List,
we've seen some mails containing malicius macros not detected by clamav
with "OLE2BlockMacros yes".
https://virustotal.com/de/file/76b8348170c8f44a1030765118ad71b5b93374aad93e24e0b106ccbcf7c89547/analysis/
So far the filenames we've seen where Swift.doc. According to Virustotal
the following filenames have been seen:
SWIFT.doc
Swift.doc
ORDER.doc
ORDER (1).doc
I've written a Bug-report for clamav and i'm waiting for their answer.
--
Mit freundlichen Gruessen
H. Backhaus
Fink-Computer Systeme
Heggrabenstr. 9, 35435 Wettenberg
Email: heino.backhaus at fink-computer.de
Web: www.fink-computer.de
Fax: +49-641-98444638
Fon: +49-641-98444640
UST-ID: DE151040770
HRB: 2143 Gießen
GF: Fredi Fink
"In retrospect it becomes clear that hindsight is definitely overrated!"
-Alfred E. Neumann
More information about the MailScanner
mailing list