/
Snare Server download files – false positives

Snare Server download files – false positives

Owned by Carlos Osorio
Nov 12, 2020
1 min read


SUMMARY

Dec 20, 2017

Antivirus (AV) software may occasionally generate reports of alerts with Snare Central Server official release files.

For example,

Trojan-ArcBomb in the "SnareServer-v7.1.4.iso" and "SnareServer-v7.2.0.iso" files

In this case, the AV is detecting the testing payloads from OpenVAS. It is not the Trojan implant, but the detection payloads used by the vulnerability scanner. The OpenVAS software has many malicious payload detection components and could result in many false positives if scanned directly by AV.

Intersect Alliance can confirm it is a false positive in this context.


Related content

Administrative Tools
Administrative Tools
Snare Central v8 Documentation
More like this
Anti Virus and malware software interactions with Snare
Anti Virus and malware software interactions with Snare
Snare Solutions
More like this
Release Notes for Snare Windows Agent v5.1.0
Release Notes for Snare Windows Agent v5.1.0
Snare Windows Agent v5 Documentation
More like this
Release Notes for Snare Windows Desktop Agent v5.1.0
Release Notes for Snare Windows Desktop Agent v5.1.0
Snare Windows Desktop Agent v5 Documentation
More like this
System Menu
System Menu
Snare Central v8 Documentation
More like this
Release Notes for Snare Central v7.5.0
Release Notes for Snare Central v7.5.0
Snare Central v7 Documentation
More like this