I have concern regarding file ratings

QuickSilverST · September 13, 2023, 2:37pm

Hi, as i normally do, i submit a bunch of malware on a regular basis. What i have noticed and this has happenend alot, i have to object to malware rating. The team will rate as clean, we have the option to click on the VT rating, then as no surprice many vendors rate it as malware, as example below:

But yet if you look at the list of vendors rating is al malware, Xcitium is one of them:

This is very confusing and then causes doubt when it comes to auto-containment. It will only contain the file if unknown, know if the team rate malware as clean, when then have to hope somewhere in the attack chain is an unknown to then contain the attack chain somewhat.

nivedithab · September 13, 2023, 2:53pm

hi @QuickSilverST

I understand your concern, I will share the details with the Verdict team and get back to you with the feedback from them,

Thank you

Nik · September 13, 2023, 7:01pm

I have no problems with rating the files XAMAS(Xcitium Automated Analysis) do the job and all of my malwares are rated by Xcitium as malware