Portable v1.3.6 is getting flagged as Trojan:Win32/Zpevdo.B by Windows Defender

[d-rez]

Describe the problem
Portable v1.3.6 is getting flagged as Trojan:Win32/Zpevdo.B by Windows Defender right after downloading it through a browser

To Reproduce
Steps to reproduce the behavior:

1. Go to https://electrumsv.io/download.html on Windows in any browser
2. Download 1.3.6-portable.exe from the official page
3. See file flagged and quarantined by Defender as https://www.microsoft.com/en-us/wdsi/threats/malware-encyclopedia-description?name=Trojan%3aWin32%2fZpevdo.B&threatid=2147729093

Expected behavior
Not being detected as malware

Screenshots

Desktop (please complete the following information):

• OS: [e.g. iOS] Win10 v2004
• Defender DB: v1.323.850.0
• Browser [e.g. chrome, safari] Firefox
• Version [e.g. 22] 80.0.1

Additional context
Downloaded the file in Windows Sandbox and checked its md5, it matches the expected hash (0977860035060E42CD73607E85D271035B904744CABEC394483CAE792A9BF8EA)

[rt121212121]

Thank you for reporting this and for providing all the information, the malware name and defender db information are required for reporting so it's much appreciated. I've filed a false alarm report with Microsoft. The builds are generated on Azure CI automatically as are the hashes, so if the hashes match then these are the files that came from Amazon.

[rt121212121]

I just checked Azure and redownloaded the hashes to make sure.

It matches. Also Microsoft seem to confirm the match you got, we'll see how it goes.

[rt121212121]

[d-rez]

Thanks! Works fine now :)