Extensive Heuristics-Update AHeAD

Today we will roll out an engine update that not only fixes some false positives, but also adds and refines a whole lot of heuristic detections. The detection routines for following malware families were added or refined:

GAME/Casino.Gen
BDS/Backdoor.Gen
BDS/Bifrose.Gen
DIAL/Dialer.Gen
DR/Delphi.Gen
DR/MicroJoiner.Gen
TR/ATRAPS.Gen
TR/BHO.Gen
TR/Crypt.CFI.Gen
TR/Crypt.FKM.Gen
TR/Crypt.FSPM.Gen
TR/Crypt.PEPM.Gen
TR/Crypt.TPM.Gen
TR/Crypt.ULPM.Gen
TR/Crypt.XDR.Gen
TR/Crypt.XPACK.Gen
TR/Dldr.Delphi.Gen
TR/Dldr.Swizzor.Gen
TR/Dldr.Zlob.Gen
TR/Downloader.Gen
TR/Dropper.Gen
TR/Hijacker.Gen
TR/Rootkit.Gen
TR/Spy.Banker.Gen
TR/Spy.Gen
TR/Vundo.Gen
WORM/Bagle.Gen
WORM/Zhelatin.Gen

The new detection routines for Casino games can help companies to keep their employees desktops clean of distracting software. You have to activate the class “Games” in the client configuration. This Update significantly improves the customer protection.

P.S.: We had to delay the update due to further fixes to some detections.

Dirk Knop
Technical Editor