Kaspersky detection category

[total]

Hello,

Is there any "user guide" or something to read about detection classification??? See below:

VHO:Trojan.MSIL.Convagent.gen

UDS:Trojan.Win32.Packed.gen

HEUR:Trojan-Banker.Win32.Mekoban.gen

 

While HEUR I may have an idea what it is, what about VHO, UDS ????

Any more like these???

 

Thanks!

 

[Schulte]

Hello @total,

I think you guessed that 'HEUR' is a detection of heuristics. So the detection is very similar to something already known.

VHO indicates a 'Very Harmful Object'.

UDS refers to a detection by the cloud (KSN), it is called 'Urgent Detection System'.

There is also the classification 'not-a-virus' for possibly harmful tools or for adware.

[Schulte]

Sorry, forgot something important:

'PDM' may also appear, then the 'Proactive Defense Module' has detected a program with suspicious behavior.
In this case only the support can help.

[total]

Thank you!

Is there any tutorial or info I can read about all these?

[Schulte]

Hi @total,

it's not exactly what you're looking for, but here's some more info worth reading:
https://encyclopedia.kaspersky.com/knowledge/classification/
 

[Xzz123]

VisHash Offline

based on Locality-Sensitive Hashing(LSH), kind of mechine learning detection