ClamAV not able to Detect trojan.expl

[Muzeebshaik]

Hello team,

We are using ClamAv software to scan virus in one of our application. But we came across one issue where in ClamAV is unable to detect Trojan whereas other software's were able to detect. Below is the Git link for the file we used for scan https://github.com/0xCyberY/CVE-T4PDF/blob/main/rce_foxit.pdf

We used the below tool to scan the above file, where other antivirus software's were able to detect whereas ClamAV could not detect the virus. https://www.virustotal.com/gui/file/e4280fd86313a5830acc651f58d118037500087deb6da63338d73adb1fddda9d

Let us know if it is a known behavior's from ClamAV side or ClamAV is working on any patch that will releases in future.

[brebell]

@Muzeebshaik thanks for sharing. Could you please submit this false negative to our malware report site? https://www.clamav.net/reports/malware

Thanks.

[Muzeebshaik]

@brebell After I report the false negative to the malware report website, when will the changes take effect and clamav be able to identify the malware in the file?

[Muzeebshaik]

@brebell , Could you provide an update on this, as it is preventing us from making business decision?

[micahsnyder]

@Muzeebshaik our team has been on holiday break and most will return on Monday. I have reached out to the threat research team to inquire about this report. I was able to confirm that we received your report but I am unsure why it did not result in a new signature. I will update you when I know more.

[Muzeebshaik]

@micahsnyder Hello.. Any update on this?

[vikasgupta1456]

@Muzeebshaik Were you able to identify and fix this ?

@micahsnyder @brebell Any update on this ? I am also facing the same issue. Trying to scan one malicious file using ClamAV in my application but it marks file as 'Clean'

[micahsnyder]

I will ask again.