Symantec Access Management

  • Private Community
Back to discussions
Expand all | Collapse all

Why is conf_ad_server_2.03.exe flagging as malware?  {SHA256: 61f290751474e0db5f79f256220cabe7923796c5629865f37a041a073c8e8f2a}  And it is unsigned!

  • 1.  Why is conf_ad_server_2.03.exe flagging as malware?  {SHA256: 61f290751474e0db5f79f256220cabe7923796c5629865f37a041a073c8e8f2a}  And it is unsigned!

    Posted Aug 28, 2018 09:31 AM

    We had a coworker blocked in Carbon Black because this object was marked as malware in VirusTotal, and it is not signed by CA.    Sure looked malicious to us.   We had to move it from our blacklist to the whitelist.   Our security reputation took a hit.   CA needs to be more cautious with their probes!

     

    Please verify that this object is yours!

     

    conf_ad_server_2.03.exe  

     

    Marked by 34 of 66 Antivirus companies as Malware in VirusTotal, original file name "Program.exe", last analysis date 2018-08-08.

     

    SHA256: 61f290751474e0db5f79f256220cabe7923796c5629865f37a041a073c8e8f2a



  • 2.  Re: Why is conf_ad_server_2.03.exe flagging as malware?  {SHA256: 61f290751474e0db5f79f256220cabe7923796c5629865f37a041a073c8e8f2a}  And it is unsigned!
    Best Answer

    Broadcom Employee
    Posted Aug 28, 2018 12:06 PM

    Can you please be more specific on exact product in use? You opened this under community space for CA Directory and I don't believe that 'conf_ad_server_2.03.exe ' is part of CA Directory product.

     

    If this not a CA Directory related, I suggest you post this again under appropriate product space so someone can assist you further.