Engine Zero and Endpoint Secure Detection Analysis
I am currently conducting a test with a potentially malicious application on my desktop with Endpoint Secure. During the test, ES successfully detected the application as malicious. However, when I uploaded the same application to VirusTotal for analysis, the Sangfor Engine Zero did not identify it as a threat, as shown in the screenshot below.ES Detection Log
Virustotal Analysis Result. Thank you for sharing your findings. good information:victory: Thanks for sharing the specific use case of ES. If you require any assistance, please do not hesitate to contact the Sangfor support team for my suggestion. thank you for the information Dear Yakubi,
The reason for that is the Endpoint Secure uses different engines to determine a file is malicious.The fact that you are able to scan the file as threat from Endpoint Secure shows that the file has been detected as a threat by one of the engine. (Definitely not Engine Zero, because as you can see from the Virus Total results it shows not detected by Engine Zero).
page:
[1]