Security concerns
omareltf opened this issue · 1 comments
Virus Total is saying that the release you published (1.9) is contacting several IP addresses, why does it need to do that?
I'm pretty sure that this is a false positive, there are some anti-virus software out there that just assume something one day and when you contact them, you get the answer that it was a wrong result (and they hopefully will fix it).
All the software is open source here and you can just look at the code.
Do you know this vendor "SecureAge" ? I've never heard of this. I'm pretty sure this is just a false positive. The code is very straight forward and everything is open source. You could even built your own releases with the perl packer and try to upload them and contact the anti-virus/malware software vendor.
Thanks
BTW: all the other anti-virus scanners didn't find any malicious activity or IP addresses etc... probably this SecureAge would also just flag the source code - only when run ? - of the (open source) perl modules etc.
Furthermore, if I click on that IP address, it just says it is a microsoft IP address (https://www.virustotal.com/gui/ip-address/13.107.4.50/details)... maybe the scanner found this in some analysis steps for included/imported/standard perl modules with tests etc.... but has definitely nothting to do with 7z2hashcat