Capture ATP has identified it as malware, it it real or false positive?
pmelchiori
Newbie ✭
Is there a way to force a new analysis of capture ATP file? here an example:
Access to this file is blocked
Capture ATP has identified it as malware. It is not safe to download.
MD5: e2a28768f016a0b80a3f0c713163e997
URL: https://www.7-zip.org/a/7z2000.exe
here the page on virusTotal: https://www.virustotal.com/gui/url/b55c73f76f3d0262863f317f90c4b008fe7725b13440ebdf5e6f55445f1aaf77/detection
thanks😉
Category: Capture Security Center
Tagged:
0
Best Answer
-
CORRECT ANSWER
Larry
All-Knowing Sage ✭✭✭✭
You would think that there would be a feature in MySonicWall that would let you report this, but, no.
According to this posting (https://community.sonicwall.com/technology-and-support/discussion/comment/2267) you have to open a case with Support and have them follow the procedure in the post to mark this EXE as a "false positive."
Good luck!
1
Answers
Ciao Paolo,
in your mysonicwall account there is a section named Report Issues that allow you to provide a sampel file to SonicWall team in order to verify a false positive or a false negative. Have a look below:
Maybe this can help you for a future problem, since for this the time went by.
Cheers
@Enzino78 I appreciate this - albeit belatedly.
SonicWall should make a better effort at identifying what "Report Issues" really means.