search

kaikramer / keystore-explorer

KeyStore Explorer is a free GUI replacement for the Java command-line utilities keytool and jarsigner.
https://keystore-explorer.org/
GNU General Public License v3.0
1.7k stars 275 forks source link

Virustotal and chrome #316

Closed MagnusHaglund closed 2 years ago

MagnusHaglund commented 2 years ago

Virustotal detects kse-550-setup.exe from https://keystore-explorer.org/downloads.html as malware. https://www.virustotal.com/gui/file/3e6db6d082d2d46c29f9ebf50cf96355b4b7ce5f60432e0df9d5fa436a56c803/detection

Chrome labels kse-550-setup-no-jre.exe from https://keystore-explorer.org/downloads.html as dangerous and blocks from even being downloaded

kaikramer commented 2 years ago

What Virustotal actually says is: "3 vendors out of 67 have detected something, all the other ones say it's fine"

This is pretty usual after a new release and also changes pretty quickly in this phase. Two days ago Kaspersky was the only engine on Virustotal that had detected some kind of trojan, I have reported it as a false positive to Kaspersky in preparation for the release and then two days later Kaspersky had whitelisted the file, but 5 other vendors were red...

I'll see what I can do about the remaining AV vendors and Google/Chrome, but probably those problems will vanish by itself after a few days anyway.

kaikramer commented 2 years ago

I have received confirmation from Bitdefender and Avast today that they have whitelisted KSE 5.5 as well. Slow but steady progress...

MagnusHaglund commented 2 years ago

That's great :) I guess it's fine to close the issue.

Madjosz commented 2 years ago

Windows Defender (and thus Firefox after downloading) also complains about the installer containing a virus or malware. The Windows Defender provides the following details:

Program:Win32/Uwamson.A!ml

Alert level: Low Status: Active Date: 2021-12-09 09:29 Category: Potentially Unwanted Software Details: This program has potentially unwanted behaviour.

containerfile: C:\Users\user\Downloads\kse-550-setup-no-jre2.exe

file: C:\Users\user\Downloads\kse-550-setup-no-jre2.exe->(inno#000000)

webfile: C:\Users\user\Downloads\kse-550-setup-no-jre2.exe|https://objects.githubusercontent.com/github-production-release-asset-2e65be/46527481/2e8c62ff-f6c1-43b8-9f7d-e59f0cc95398?X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Credential=AKIAIWNJYAX4CSVEH53A%2F20211209%2Fus-east-1%2Fs3%2Faws4_request&X-Amz-Date=20211209T082826Z&X-Amz-Expires=300&X-Amz-Signature=063f2df2fd34aacdda627d4cae0a40166ee42aac2d3365242cc62300e241c807&X-Amz-SignedHeaders=host&actor_id=28844868&key_id=0&repo_id=46527481&response-content-disposition=attachment%3B%20filename%3Dkse-550-setup-no-jre.exe&response-content-type=application%2Foctet-stream|pid:1000,ProcessStart:132835121111359746

kaikramer commented 2 years ago

@Madjosz See #321