You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
SentinelOne (Static ML): Static AI - Malicious Mach-O
WithSecure: Malware.OSX/GM.Joker.DS
My guess is that by subtly modifying the Joker YARA rules we can cut the hit rate in half, but we should definitely document why this occurs (YARA rules often match any program that implements the same YARA rule).
The text was updated successfully, but these errors were encountered:
tstromberg
changed the title
Add documentation to explain why malcontent is detected as malware by other scanners
Document why malcontent is often detected as malware by other scanners
Dec 18, 2024
It turns out that Elastic Security isn't alone (#78)
From https://www.virustotal.com/gui/file/b6f90aa5b9e7f3a5729a82f3ea35f96439691e150e0558c577a8541d3a187ba4/detection
My guess is that by subtly modifying the Joker YARA rules we can cut the hit rate in half, but we should definitely document why this occurs (YARA rules often match any program that implements the same YARA rule).
The text was updated successfully, but these errors were encountered: