search

giuspen / cherrytree

cherrytree
https://www.giuspen.net/cherrytree/
Other
3.45k stars 469 forks source link

Malware Detected #2593

Open Annoder opened 1 month ago

Annoder commented 1 month ago

VirusTotal drop: W32.AIDetectMalware by Bkav Pro

I recently switched operating systems and was planning to download CherryTree for Windows when I came across this.

Captura de pantalla 2024-10-23 055650 Captura de pantalla 2024-10-23 055746

I really don't think CherryTree contains any kind of malicious code. It's probably a false positive, but I think it should be fixed with some testing.

giuspen commented 1 month ago

Thans for reporting @Annoder I'm curious if you run the virus analysis on the portable folder (after download and extraction) is it still unhappy? Maybe we can understand what exactly inside of the installer exe is not happy with. The installer exe is generated with inno setup script https://github.com/giuspen/cherrytree/blob/master/scripts/cherrytree.iss out of the portable folder. The portable folder is generated with this script https://github.com/giuspen/cherrytree/blob/master/scripts/msys2_prepare_standalone.sh building on https://www.msys2.org/

Annoder commented 3 weeks ago

Thanks for the clarification. I performed the virus scan directly on the .exe installer file.

In that case (being generated with a script) I don't understand VirusTotal's detection.