Windows Defender finds Trojan Tiggre!Plock in pack.exe

josephspurrier / golang-portable-windows

Go Programming Language - Portable Environment for Windows

MIT License

119 stars 17 forks source link

Windows Defender finds Trojan Tiggre!Plock in pack.exe #8

Closed kravlost closed 2 years ago

kravlost commented 6 years ago

As title. Not sure if this is a false positive, but I've uninstalled it for now.

Version 1.10-1

Affected file: \go\pkg\tool\windows_386\pack.exe

papypom commented 6 years ago

Same here ... Pity.

josephspurrier commented 6 years ago

Oh wow, that's crappy. I'll scan it on my machine. I've removed the download for now until I can determine why the false positive. Thanks for letting me know.

SegoCode commented 4 years ago

Let me check...

Name: pack.exe SHA1: 200302a4c511cc810ffbc6d77e022d3444e71bf5 Use DLL:

kernel32.dll
winmm.dll
ws2_32.dll

Strings: (Good) https://gist.github.com/SegoCode/780c64939effbf152fc6ec843412e230 Virustotal Analysis: 1/73

I think possibly a false positive, No files change, No external connections, 8 months on virustotal and just one heuristic detection.