Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Malware reported on the executable files by 5 different sources per Virustotal.com #5

Closed
Gverharst opened this issue Sep 18, 2020 · 13 comments
Closed

Malware reported on the executable files by 5 different sources per Virustotal.com #5

Gverharst opened this issue Sep 18, 2020 · 13 comments

Comments

@Gverharst
Copy link

image
@jlgutenson
Copy link
Collaborator

Hey @Gverharst, are there particular lines in the code that the 5 different sources are being reported at?

@Gverharst
Copy link
Author

@jlgutenson I do not have the code. We downloaded the APT Installer for Windows. As a matter of practice, prior to installing any applications we run installers thru "virustotal.com". When uploading APTs installer, the above 5 sites report the file as malicious. As such, we have not authorized our users to install this application.

@Gverharst
Copy link
Author

Correction, When uploading "Antecedent Precipitation Tool.exe" to virustotal, there are now 6 services reporting malware.
image

@jlgutenson jlgutenson mentioned this issue Dec 30, 2020
Closed
@Gverharst
Copy link
Author

Is this being looked into? We still have staff that are hoping to use this tool and are waiting until the potential false positives have been addressed, we cannot install this software.

@jlgutenson
Copy link
Collaborator

Hi @Gverharst, we've submitted false positive reports to those companies and I'm waiting to here back from them. Only one company has responded (SecureAge) and they confirmed the false positive.

@Gverharst
Copy link
Author

Thanks @jlgutenson I appreciate the status update. Please let us know the status of the other companies as you receive them. Our business users have been excited to begin using these tools.

@jlgutenson
Copy link
Collaborator

Hey @Gverharst, just to briefly update you, three of the six companies have whitelisted the software (SecureAge APEX, McAfee-GW-Edition, and eGambit). I'm still working on the others. Thank you for your patience!

@Gverharst
Copy link
Author

@jlgutenson Thanks again for the update. I am sure our users are looking forward to begin using the application.

@Gverharst
Copy link
Author

Are there any more updates on this work? Our users are inquiring.
I did check the current version at virustotal and now only see one vendor reporting as a trojan:
image

@jlgutenson
Copy link
Collaborator

Hi @Gverharst, I submitted a false positive report to that software vendor a few months back that appears to still be processing.

@Gverharst
Copy link
Author

Hi @jlgutenson Do you have any updates on this? Our staff are eager to use the application.

@jlgutenson
Copy link
Collaborator

jlgutenson commented Jan 27, 2022
edited

Hi @Gverharst, the false positive report I submitted to Sangfor a few months back that appears to still be processing. All other software vendors have whitelisted the APT.

@Gverharst
Copy link
Author

Good morning @jlgutenson ,
I am no longer seeing the false positives. thank you very much for all your efforts. We are now approving this application for staff usage.
image

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@jlgutenson @Gverharst