False Negative in security products


I am not an expert user of VirusTotal but it is one of the most easily accessible service on checking unknown or suspicious files. The results generate by different security vendors are almost always different. Very few files will be detected by all the virus scanning engines.

One typical example is this one (Plateful.exe) which 43/68 security vendors is able to flag it as malicious. This file has some obvious issues making it “stand out” as a malware

A certificate was explicitly revoked by it…

Read More