This is a static archive of our old Q&A Site. Please post any new questions and answers at ask.wireshark.org.

Have Wireshark realy an Trojaner/KeyLogger ?!!

0

Hello, i have maked an virus/maleware test ---> https://www.virustotal.com/de/file/72949ee020a9b21c7cff94b68920db883504ddbb442870496095471b20707feb/analysis/

An Virustotal have found an (Trojan.Keylogger.Win32.46401) Have Wireshark realy an Trojaner/KeyLogger ?!!

asked 25 Dec '15, 16:09

EASYLAYER's gravatar image

EASYLAYER
6112
accept rate: 0%


One Answer:

2

No, only Zillya as one out of fifty-three scanners used by VirusTotal gives an indication of a malware. Did you consider this could be a false positive? Isn't this is precicely what you use VirusTotal for? To get a varied evaluation of the target to be able to avoid false positives/negatives? They even say it themselves: "Probably harmless! There are strong indicators suggesting that this file is safe to use." I expect their signature database will be updated eventually (it's at 20151215 now) and then you can try again to see what happens.

answered 26 Dec '15, 02:14

Jaap's gravatar image

Jaap ♦
11.7k16101
accept rate: 14%

I agree with Jaap.

(28 Dec '15, 04:42) thetechfirm

Your answer has been converted to a comment as that's how this site works. Please read the FAQ for more information.

(28 Dec '15, 05:50) Jaap ♦