EICAR test file for checking Kaspersky applications' behavior

 

General articles: Dumps and reports

 
 
 

EICAR test file for checking Kaspersky applications' behavior

Back to "Dumps and reports"
Latest update: November 20, 2019 ID: 7399
 
 
 
 

EICAR-Test-File is not a threat, it was created to imitate the detection of a threat by antivirus software. It is a 68-byte file with the .com extension which displays a text message.

Earlier, different files were created by cybersecurity software vendors to demonstrate how their solutions behave upon detection of a threat. Later, the vendors have agreed upon developing a standard simulator which consists of a simple line of text. This allows any user to initiate a detection manually, e.g. by copying the text to a file from the documentation. 

The resulting EICAR file looks like this:

X5O!P%@AP[4\PZX54(P^)7CC)7}$EICAR-STANDARD-ANTIVIRUS-TEST-FILE!$H+H*

You can copy this line of code and save it to a text file. When you run the file, it will show the message EICAR-STANDARD-ANTIVIRUS-TEST-FILE! and return the control to the operating system. Cybersecurity software normally detects it as EICAR-Test-File.

You can download the ready-to-use eicar.com test file from the Kaspersky server by following this link: eicar.zip

 
 
 
 
Was this information helpful?
Yes No
Thank you
 

 
 

How can we improve this article?

Your feedback will be used for content improvement purposes only. If you need assistance, please contact technical support.

Submit Submit

Thank you for your feedback!

Your suggestions will help improve this article.

OK