search

imagej / imagej2

Open scientific N-dimensional image processing :microscope: :sparkler:
https://imagej.net/
BSD 2-Clause "Simplified" License
1.2k stars 337 forks source link

A Trojan detected by Windows Defender in FIJI distribution #191

Closed hyungsongnam closed 6 years ago

hyungsongnam commented 6 years ago

fiji_bug

Hello, I recently downloaded a JRE only version of FIJI from the FIJI website and installed it on a new Windows 10 computer. I would like to report that the Windows Defender scan shows there is a trojan within the FIJI distribution. Thank you.

ctrueden commented 6 years ago

This is very likely a false positive. Windows Defender's recent definitions update has triggered this detection in other JAR files as well, e.g. in IntelliJ IDEA.

In the case above, the affected file is listed as ij-1.51u.jar. If you have Apache Maven installed (see here), you can build the code yourself as follows:

git clone https://github.com/imagej/ImageJA --tag v1.51u --depth 1
cd v1.51u
mvn package

And then scan the target/ij-1.51u.jar file and see if Windows Defender complains. I am guessing that the byte-code sequence happens to match the signature of this malware, but that the malware is not actually present—JAR files cannot be infected in the same way as Windows native executables.