The MD5 of the false positive file that I submitted to the website:MD5 hash of 
file Standard Job1.xlsx:
eb 28 c5 01 b2 14 91 5a 70 31 59 92 56 9e f6 10

      From: Joel Esler (jesler) <jes...@cisco.com>
 To: ClamAV users ML <clamav-users@lists.clamav.net> 
 Sent: Tuesday, September 12, 2017 5:55 AM
 Subject: Re: [clamav-users] CVE-2017-11241 - Synology DIskStation AV Essentials
   
Depends on your operating system, but googling “how do I find the md5 of a 
file” for your OS should turn of plenty of results.

--
Joel Esler | Talos: Manager | jes...@cisco.com<mailto:jes...@cisco.com>






On Sep 11, 2017, at 5:42 PM, Judd Grayzel 
<judd_gray...@yahoo.com<mailto:judd_gray...@yahoo.com>> wrote:

Where do I get the MD5 for the file?

Sent from my iPhone

On Sep 11, 2017, at 1:42 PM, Joel Esler (jesler) 
<jes...@cisco.com<mailto:jes...@cisco.com>> wrote:

You want to submit some false positives to us via the website, followup here 
with the md5s of the files you submit, the malware team can take a look.

--
Joel Esler | Talos: Manager | 
jes...@cisco.com<mailto:jes...@cisco.com><mailto:jes...@cisco.com>






On Sep 11, 2017, at 3:06 PM, Judd Grayzel 
<judd_gray...@yahoo.com<mailto:judd_gray...@yahoo.com><mailto:judd_gray...@yahoo.com>>
 wrote:

My Synology Diskstation running the Anti-Virus Essentials (ClamAV based engine) 
quarantined almost 1000 files for the CVE-2017-11241 vulnerability. This CVE 
references a problem with Adobe Acrobat, but the files that are being 
quarantined are Microsoft Excel fIles.
Do these files really have a virus of some sort, or is this a False/Positive 
situation?
_______________________________________________
clamav-users mailing list
clamav-users@lists.clamav.net<mailto:clamav-users@lists.clamav.net><mailto:clamav-users@lists.clamav.net>
http://lists.clamav.net/cgi-bin/mailman/listinfo/clamav-users


Help us build a comprehensive ClamAV guide:
https://github.com/vrtadmin/clamav-faq

http://www.clamav.net/contact.html#ml

_______________________________________________
clamav-users mailing list
clamav-users@lists.clamav.net
http://lists.clamav.net/cgi-bin/mailman/listinfo/clamav-users


Help us build a comprehensive ClamAV guide:
https://github.com/vrtadmin/clamav-faq

http://www.clamav.net/contact.html#ml

_______________________________________________
clamav-users mailing list
clamav-users@lists.clamav.net<mailto:clamav-users@lists.clamav.net>
http://lists.clamav.net/cgi-bin/mailman/listinfo/clamav-users


Help us build a comprehensive ClamAV guide:
https://github.com/vrtadmin/clamav-faq

http://www.clamav.net/contact.html#ml

_______________________________________________
clamav-users mailing list
clamav-users@lists.clamav.net
http://lists.clamav.net/cgi-bin/mailman/listinfo/clamav-users


Help us build a comprehensive ClamAV guide:
https://github.com/vrtadmin/clamav-faq

http://www.clamav.net/contact.html#ml

   
_______________________________________________
clamav-users mailing list
clamav-users@lists.clamav.net
http://lists.clamav.net/cgi-bin/mailman/listinfo/clamav-users


Help us build a comprehensive ClamAV guide:
https://github.com/vrtadmin/clamav-faq

http://www.clamav.net/contact.html#ml

Reply via email to