Advanced Threat Defense reports false malicious conviction for all PDF samples
Last Modified: 2022-06-23 10:27:37 Etc/GMT
Affected Products
Languages:
This article is available in the following languages:
Trellix CEO, Bryan Palma, explains the critical need for security that’s always learning.
As per Gartner, "XDR is an emerging technology that can offer improved threat prevention, detection and response."
Trellix announced the establishment of the Trellix Advanced Research Center to advance global threat intelligence.
Trellix Advanced Research Center analyzes threat data on ransomware, nation-states, sectors, vectors, LotL, MITRE ATT&CK techniques, and emails.
As of May 14, 2024, Knowledge Base (KB) articles will only be published and updated in our new Trellix Thrive Knowledge space.
Log in to the Thrive Portal using your OKTA credentials and start searching the new space. Legacy KB IDs are indexed and you will be able to find them easily just by typing the legacy KB ID.
Advanced Threat Defense reports false malicious conviction for all PDF samples
Technical Articles ID:
KB92804
Last Modified: 2022-06-23 10:27:37 Etc/GMT Environment
Advanced Threat Defense (ATD) 4.x Adobe Acrobat Reader XI Problem
ATD reports many malicious analysis results to PDF samples in the Analysis Reports screen. Those analysis results have the following characteristics:
Solution
The solution is to either update or upgrade Adobe Acrobat Reader in your VM. The entire process consists of three sections:
You have two options to perform this operation:
NOTES:
Create the VM profile using your updated VM image img file. For full steps, see the instructions in the Installation Guide. Once you finish creating the updated VM profile, enable the updated VM profile in analyzer profile:
Affected ProductsLanguages:This article is available in the following languages: |
|