search

FlorianSLZ / IntuneWin32Deployer

Create and deploy winget and chocolatey (win32) apps to Intune with one click!
GNU General Public License v3.0
47 stars 9 forks source link

Flagged as Trojan #23

Open krapuul opened 10 months ago

krapuul commented 10 months ago

Flagged as Trojan by GDATA when launching the software the very first time. Malware Signature: "PowerShell.Trojan.Agent.BMP (Engine B)"

winget-trojan

I did not test further beyond that point.

amandarino-tei commented 1 week ago

Falcon Sandbox indicates a possible keylogger http://www.hybrid-analysis.com/sample/6b3bca249c7e8b8b8daddf4b7f6bf250a1274b0ce4e05ac156592ce9b7339ea6/66e09b02b26e9228260f9ad2