SQ30106
Detected presence of malicious files by a YARA signature.
priority | CI/CD status | severity | effort | RL level | RL assessment |
---|---|---|---|---|---|
fail | high | high | 1 | malware: fail Reason: malicious components found |
About the issueโ
Proprietary ReversingLabs malware detection algorithms have determined that the software package contains one or more malicious files. The detection was made by a static YARA signature. This malware detection method is considered highly accurate, and can typically identify the malware family by name.
How to resolve the issueโ
- If the software intent does not relate to malicious behavior, investigate the build and release environment for software supply chain compromise.
- Avoid using this software package.
Incidence statisticsโ
Not relevant for this type of issue.
Recommended readingโ
- YARA rule (ReversingLabs Glossary)
- Level up your YARA game (ReversingLabs blog)
- Create custom policies with YARA