Below are several MDB signatures for currently popular malware that Clam AV signatures do not detect, and they will probably never detect them. These may be the most important signatures that I will prepare for June 2021.

Copy the MDB signature(s) to a Notepad file and save it in the ClamWin db program data folder, or add the signature to an existing MDB file if you already have one there. Do not save the file with a .txt or .text extension on the end of the name. Save the file as Sigfile.mdb. Select file type All Files to prevent .txt or .text from being used at the end of the filename. ClamWin is unable to recognize a text file as a signature and will give a corrupt database warning. After saving the file to the ClamWin db program folder, scan something with ClamWin to make sure the signature works--delete the signature file if it does not, or remove the signature from an existing MDB file if you put it there and save the file as it was.

MDB signatures are signatures for a section of a malware file. They can sometimes last up to a month, especially if the section is re-used in other malware. I delete my MDB signatures two weeks after the end of the month in which they were prepared. The last section of each signature tells the month/date/time the signature was prepared (060321 is June 03, 2021 at 8:46 pm).

270336:10976974d68eaf4a2c93997ae445c646:Win.Trojan.Trickbot-060321.1846
23040:dd3441f02c27ec79dac0b270c9955488:Win.Trojan.Ursnif-060321.1842
409600:78ca976e28a876796b38ee07fd98e0d7:Win.Trojan.Qbot-060321.1839
4608:0b49e68887fd4cdf41fbb2d2f0baf95a:Win.Trojan.Backdoor-060321.1836
240128:aad7abb81f29bae07012ed70e97d6c07:Win.Trojan.Trickbot-060321.1834

Regards,