Virus detected in Windows version #3518
Comments
|
I got the same message for Avast. It looks like it tripped the generic heuristic detection, not a specific known threat database hit. Avast marked it as: Virustotal did not find anything in the installer; https://www.virustotal.com/gui/file/831d998b22e317acd48c7184acef8b5b89c825717d16545e7b83f3d7f9f5bdbb It looks like the false positive is limited to Avast and Cortex XDR (perhaps they use the same detection engine?) |
|
I submitted a false positive to Avast, but I'm not sure how to do so with Cortex. |
|
same here, windows defender |
|
This is a pretty fun game of Whack-a-Mole. I have submitted 11.0, 11.1 and now 11.2 to their upload thing. I don't know how anyone is supposed to do this or when they'll learn. I guess wait a few hours until they mark 11.2 as also not malware. God. |
|
I reported it in the Palo Alto live community. Let's hope someone actually reads all of these threads. |
Byron
added
os:windows
|
Hi all, going to close this for now as we have started submitting these false-positives to vendors directly (much to our discomfort). We haven't heard of any new cases of this for a few weeks so I'm going to take the brave assumption most have been squashed. If you happen to get another false-positive, please open a new issue with your AV's name and any error messages / paths you can find from the detection event. For example, it's important for us to know if it is picking up the .MSI installer vs. one of the unpacked binaries (e.g. Thanks for the reports everyone! |
Cortex XDR by Palo Alto Networks detects the Windows version of GitButler as virus.
Do you have any idea what might be causing this and how to prevent this in future releases?
Currently both version 0.11.1 and the nightly builds are affected.
Component: WildFire
Cortex XDR code: C0400055
Hash: c76d86368be3331901ab4371c8e497734eaacf7f76a2967cf3bf1054c2081993
The text was updated successfully, but these errors were encountered: