Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

False-positive trojan in dist #16

Closed
goncrust opened this issue Feb 5, 2021 · 4 comments
Closed

False-positive trojan in dist #16

goncrust opened this issue Feb 5, 2021 · 4 comments
Assignees
@goncrust @teravyte18 @KingKatana09
Labels
bug Something isn't working help wanted Extra attention is needed invalid This doesn't seem right

Comments

@goncrust
Copy link
Owner

goncrust commented Feb 5, 2021

Windows defender is accusing a false-positive (Trojan:Win32/Wacatac.B!ml) in the file (main.exe) created by pyinstaller

Screenshot 2021-02-05 043008
@goncrust goncrust added bug Something isn't working help wanted Extra attention is needed invalid This doesn't seem right labels Feb 5, 2021
@goncrust
Copy link
Owner Author

goncrust commented Feb 5, 2021

False-positive submitted to Microsoft.

@goncrust
Copy link
Owner Author

goncrust commented Feb 6, 2021

Microsoft response:

We have removed the detection. Please follow the steps below to clear cached detection and obtain the latest malware 
definitions.

1. Open command prompt as administrator and change directory to c:\Program Files\Windows Defender
2. Run “MpCmdRun.exe -removedefinitions -dynamicsignatures”
3. Run "MpCmdRun.exe -SignatureUpdate"

Alternatively, the latest definition is available for download here: https://www.microsoft.com/en-us/wdsi/definitions

Thank you for contacting Microsoft.

Thank you Microsoft :)

@goncrust goncrust closed this as completed Feb 6, 2021
@goncrust goncrust pinned this issue Feb 6, 2021
@goncrust goncrust reopened this Feb 18, 2021
@goncrust
Copy link
Owner Author

False-positive returned in version 1.1.
Submitted to Microsoft.

@goncrust
Copy link
Owner Author

Microsoft responded the same as the last time:

Microsoft response:

We have removed the detection. Please follow the steps below to clear cached detection and obtain the latest malware 
definitions.

1. Open command prompt as administrator and change directory to c:\Program Files\Windows Defender
2. Run “MpCmdRun.exe -removedefinitions -dynamicsignatures”
3. Run "MpCmdRun.exe -SignatureUpdate"

Alternatively, the latest definition is available for download here: https://www.microsoft.com/en-us/wdsi/definitions

Thank you for contacting Microsoft.

Thank you Microsoft :)

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@goncrust goncrust

@teravyte18 teravyte18

@KingKatana09 KingKatana09

Labels
bug Something isn't working help wanted Extra attention is needed invalid This doesn't seem right
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@goncrust @teravyte18 @KingKatana09