This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(76.8, 24%, 17%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EK2%3C/text%3E%3C/svg%3E)
I have multiple files that all flagged with other antimalware for suspicious behavior/MITRE analysis issues, or were explicitly detected as Rhadamanthys. All of the malware, including other issues that are being detected in %appdata% and browser cache appear to be extremely evasive. They actively disable/counter numerous forms of fairly extensive antimalware including while airgapped as well as in safemode. They also appear to be actively deleting/tampering with contents of log files for local Microsoft antimalware tools. Pdf files, especially in business/job and education contexts, appear to be constantly a problem.
The files that are stuck as "In progress" are all showing an information box that they contain "an extremely large number of individual files" despite being literally a single .pdf file that is uploaded, not a large amount of individual files. This doesn't factually make any sense.
Another individual .pdf isnt even "In progress." It is still stuck as "Submitted."
What is going on with these?
Additional Microsoft Defender tools and services that provide security across various platforms and environments
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(300.8, 28.000000000000004%, 39%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ECK%3C/text%3E%3C/svg%3E)
Hi,
To ensure this is reviewed by the appropriate security team, I recommend reporting the issue to the Microsoft Security Response Center (MSRC) for further investigation and guidance.
Bump because this is still a problem. Still no change in status, response on this post nor several somewhat similar posts that I have found.
Also I want to emphasize that with 2 weeks gone, submission details in submission history are noted to only be retained for "up to 30 days." That is basically halfway done at this point. The lack of time/retention as well as lack of email/multichannel notification of response/status change based upon what I have read, considering these still haven't been analyzed, are reasonably predictable potential problems as far as practical response/remediation/monitoring.