MALWARE DETECTED x86 version - Trojan:Win32/Sehyioa.A!cl

Question

MALWARE DETECTED x86 version - Trojan:Win32/Sehyioa.A!cl

TechnoNotice opened this issue 5 years ago · 3 comments

Detected by Microsoft Defender Antivirus

Items:
file:...\Downloads\Dependencies_x86_Release.zip
webfile:...\Downloads\Dependencies_x86_Release.zip|https://github-production-release-asset-2e65be.s3.amazonaws.com/95366680/723e4080-2a64-11ea-962f-6b01ff421594?X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Credential=AKIAIWNJYAX4CSVEH53A%2F20210125%2Fus-east-1%2Fs3%2Faws4_request&X-Amz-Date=20210125T122208Z&X-Amz-Expires=300&X-Amz-Signature=875e37de9a280a5f133d4855b545928147e4728a93e71f1464b0f3f1ba694a9a&X-Amz-SignedHeaders=host&actor_id=0&key_id=0&repo_id=95366680&response-content-disposition=attachment%3B%20filename%3DDependencies_x86_Release.zip&response-content-type=application%2Foctet-stream|pid:5316,ProcessStart:132560509192590084

Answer 1 · 2021-01-25T14:43:22.000Z

Hi. Have you read #26 ?

Answer 2 · 2021-04-19T11:44:17.000Z

Just a follow up to this post, and yes, I read #26 and understand what is going on.

If the issue is peview.exe, why then are there no gripes when downloading the Dependencies_x64.zip?
Curious.

Answer 3 · 2021-05-15T11:26:29.000Z

Most AVs rely on a "reputation score" for their quick analysis, it probably means the x64 version is "okay" since more people have downloaded and used it 🤷

Anyway, there is an undergoing conflict between AVs and security tools (even though neither my tool nor ProcessHacker is one, but whatever) so at that point the only solution for me would be to cough up and buy an EV cert