-
-
Notifications
You must be signed in to change notification settings - Fork 289
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Windows AV blocking opening zen.exe due to virus/trojan found in the executable. #37
Comments
I might try to whitelist the exe. I'll get back with an update. |
Update: Just tried again without adding an exception and it works flawlessly. TLDR: Windows is weird. |
No worries! Found it on Reddit and was actually very impressed. I have my own browser but I'm not forking it off of anything, so it's cool to see an indie browser thriving like this! |
In the last 30 minutes, while I was accessing a site, using version 1.0.0-a.29 (64-bit), Windows Defender terminated the App and deleted the core executable. |
Same happened to me. Admittedly my Defender is very weird and Windows Security crashes when I try to open it, so I can't open the UI to add exclusions or inspect things that way, but a.28 works |
It happened to me too, mine Zen was flagged by Kaspersky when I tried to import data from another browser. |
Windows 11 Zen was installed directly from the website. https://www.zen-browser.app/ Windows Defender Picked it up as soon as I opened Zen.exe Trojan Name = "Wacatac.B!ml" I dont want to be excluding something with that name, a quick google search will show you this is a popular one. |
I have the same problem, first the core executable was deleted and then a can't download the installer :/ |
Maybe it is an issue that will fade once Zen gets a signature, but as it stands, its normal operations are being flagged as Malware/Trojan like. I think I'll look into Zen again once it gets a little less alpha or beta-ish. |
The Generic Version does not pick up as a Trojan. It's just the Optimized Version. |
Check this information: and try also analyzing the file in other places like: https://internxt.com/virus-scanner |
Getting blocked for me too. |
Just wanted to report that this is still happening. System: Windows 11 Pro 22H2 Build: 22621.3880 |
I also get this same trojan script, this made me uninstall zen immediately |
Could this maybe have a connection to the new windows defender update? 1.0.0-a.29 was released 2 days ago, but this problem only started about 9 hours ago. EDIT: The latest update I've installed (defender version 1.417.317.0), doesn't include anything about |
Just tried to install the Zen browser on a Windows 10 and it blocks it claiming that there's a "PUA:Win32/Packunwan" virus |
I am on Win 10 Pro, and after the core executable was annexed, I attempted to uninstall. The uninstall would not function, which did surprise me. Maybe the missing file was causing the uninstaller to fail. |
This is preventing the winget package from being merged: |
I love this browser, but unfortunately it suddenly got deleted by Kaspersky.
|
Arghhhh the windows key didnt arive yet |
@mauro-balades How can you automate signing builds with a physical key? |
I can't, I'll have to sign it and reupload |
When you order a code signing certificate, you can either order one on a physical key (USB device) or you can order a cert which integrates with a Key Vault service (such as Azure Key Vault). In the latter case, you can setup scripts to automate the signing process. Unfortunately there's no way to extract the certificate with the private key information from the physical device. Last time I checked, you can actually extract the certificate with the private key from Azure Key Vault and use the cert in a CI pipeline using the sign tool and the extracted cert file. |
Might be good to look into setting up a cert in Azure Vault so that trusted pipelines can do automatic signing. I can see having to manually perform the signing will get old real quick. |
I was able to install it but after 2 days windows security says the |
I dont think these vulnerabilities have to do with zen, I tried updating them but it just breaks surfer |
Any update on the signing of the exe? |
@mauro-balades any updates of the above? |
The license is getting approved by certum |
This would be a great browser to use for work but there are currently false positives that won't let it get approved by IT. Glad to hear a license is getting acquired. Here are some of my scanner results mitre_d67a453b2505863b830530e87ff455fc1a95084273dd83c74d4ab409e4f5300e_160.csv |
IT Admin here; absolutely not whitelisting an unsigned piece of software. Especially not a web browser. |
Just to remind you, this is an open-source browser, meaning as an IT Admin, you have the ability to review and audit the source code directly. The signing process primarily confirms that the .exe file originates from the expected source, but it doesn't guarantee total security. I'm not suggesting you to ignore security concerns, but not all unsigned software should be dismissed. The signing process takes time, effort, and money. So, I don't think there's anything to be ashamed of or to place blame for in this situation, it's something they're working on. Also remember to donate to support them. |
The text was updated successfully, but these errors were encountered: