New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
MP4Box is detected as a threat by some antivirus vendors #653
Comments
Can you check, if this one works better for you?
Of course it is.
I don't know why this happens from time to time. 😕 Maybe because some of the tools are packed?! 🤔 |
The thing is that when I first tried to unzip the StaxRip 7z file it was immediately detected by Microsoft Defender and DELETED. However, when I try with MP4Box on StaxRip v.2.2.0, I have no noteworthy issues either with Defender or VirusTotal: I know that Microsoft Defender isn't the best but I even tried switching to Kaspersky Free Antivirus and even that one detected MP4Box as a threat (StaxRip v.2.3.0). Unfortunately, I didn't try the new MP4Box file you sent with Kaspersky but only with VirusTotal. |
The problem is, that it only happens to very few users. I guess it's related to the used antivirus app. We also use @Patman86's build for ages without issues. Ok, so we'll keep the gcc version for the next version that is coming later. 🤔 Let's see what the next release will bring us - last time it was the clean |
Ok, then, sorry for all this trouble. It's just that it is the first time that occurs to me with StaxRip and got me worried but also frustrated with my antivirus! |
@starwatcher11 When this happens a lot more often, we'll consider to use unpacked executables only. 🤔 |
If you look at the reviews on VideoHelp, you'll see there are some reports (& complaints) on virus detection. Although I explained why the false detection happens, maybe we'd better ship decompressed executables to avoid misunderstanding and confusion. 🤔 |
@JJKylee |
Here is a link to some MP4Box files packed with different UPX versions. Please check whether there is a version that is not recognized as a virus. |
For the same shipped In my experience, I once had false warnings on @Dendraspis's hotfix So I think it's basically a Windows Defender settings issue. |
I just want to find out whether it might be UPX after all. As already mentioned in UPX's git, the problem mainly occurred with the 64-bit version of UPX. I built version 4.00 of UPX myself, it is not officially available yet. |
I guess it's a combination of all. For an antivirus app the 7z files could look like a virus/trojan that is shipped with some "helpers". So using non-packed executables could help, even they are not problematic on their own. |
Agreed. |
I downloaded the latest version of StaxRip v2.3.0 a few days ago and when I tried to extract it, it was detected as a threat by Microsoft Defender on Windows 10. I checked the .7z file on virustotal and it was clean but when I tried installing a different antivirus (Kaspersky Free), it detected again StaxRip as a threat, specifically MP4Box. I tried again VirusTotal but with MP4Box and is detected as a threat by several AV vendors. VirusTotal link for MP4Box:
https://www.virustotal.com/gui/file/074a6e0fc8c50088b93da488c937e643245d207802f5a34f595abd7502dfb7b3/detection
Is this a false positive or not? I tried again unzipping the .7z file of StaxRip v2.3.0 and this time it was not detected by Microsoft Defender. What's going on? I never had issues with StaxRip for the past few years, it's the first time this occurs to me and that's why I'm reporting it.
The text was updated successfully, but these errors were encountered: