Auto Submit False-Positive/Negative Files
Introduction
Malware researchers often encounter some AV vendors fail to detect a malware sample, or falsely flags a normal file as being malicious. To build an automatic process of reporting the FP/FN files, I wrote a python tool for compressing samples and submitting to AV vendors via email.
Features
- Automatically compress all files into a single encrypted zip.
- Customizable Zip password and Email content.
- Add/Remove items from Antivirus vendor list
- Automatically save login info
- Send with one click
- Multi-language support (English or Chinese Simplified)
Screenshot
View Project
List of AV Vendors and Emails
| AV Vendor | False-Negative | False-Positive |
|---|---|---|
| Kaspersky | newvirus@kaspersky.com | - |
| ESET | samples@eset.com | samples@eset.com |
| Mcafee | virus_research@mcafee.com | virus_research@mcafee.com |
| Bitdefender | virus_submission@bitdefender.com | virus_submission@bitdefender.com |
| Avira | virus@avira.com | novirus@avira.com |
| Emsisoft | submit@emsisoft.com | fp@emsisoft.com |
| Sophos | samples@sophos.com | samples@sophos.com |
This post is licensed under CC BY 4.0 by the author.