i am in vmware workstation 11 using windows 7 64 bit
using latest avast version
i noticed the issue after i was testing avast with zoo samples
but there still not detected when i scan them there is 958 files undetected but i know there allready detected
but the main issue is there not detected at scan
i do not know if this is a vmware issue or what but seems so or avast issue i installed some windows updates but issue is still here
i tested some of the samples and some ran with out deep screen blocking them and some were blocked from deep screen and some were detected from background scanner somehow
the weirdest was 1 was detected then next one was not from deep screen but sample was in same family just a different variant
it something that has to do with vmware system and avast
the thing i do not understand is why deep screen does not have a generic detections for there behavior example file infection behavior and other malicious behavior
the thing i do not understand is why deep screen does not have a generic detections for there behavior example file infection behavior and other malicious behavior
i know it analyzes file behavior then creates a the feature vector and submits it to cloud
can you explain to me in detail what is feature vector like what details does it extracts from executable
yesterday i notice a sample that i ran first time and it ran without autosand box even popping up and running but then ran it 2 time and it flagged it as
FileRepMalware have no idea why it did not run in autosandbox first time i ran it
right now i am analyzing file infectors
and noticed autosand box is not even stopping very malicious behavior
how long does it take for cloud to analyze new behavior and classify it as malicious