aeneas-windows-setup-1.7.3.exe is infected with Trojan

[eoner]

Windows defender detects Trojan:Win32/Tisifi.B in aeneas-windows-setup-1.7.3.exe installer and deletes it.

Here are the details:

file: C:...\aeneas-windows-setup-1.7.3.exe->(inno#000007)->Icon.python_icon.exe

file: C:...\aeneas-windows-setup-1.7.3.exe->(inno#000007)->python->pip_9.0.1_py2.py3_none_any.whl->pip/_vendor/distlib/t64.exe

file: C:...\aeneas-windows-setup-1.7.3.exe->(inno#000007)->python->pip_9.0.1_py2.py3_none_any.whl->pip/_vendor/distlib/w64.exe

webfile: C:...\aeneas-windows-setup-1.7.3.exe|https://github-production-release-asset-2e65be.s3.amazonaws.com/61038895/eb214e0c-2e62-11e8-889a-de304adacaab?X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Credential=AKIAIWNJYAX4CSVEH53A%2F20190413%2Fus-east-1%2Fs3%2Faws4_request&X-Amz-Date=20190413T215703Z&X-Amz-Expires=300&X-Amz-Signature=62019c70e02de6e54b414f20781ac861bd02de7ce5b904055c18c98927e08e48&X-Amz-SignedHeaders=host&actor_id=0&response-content-disposition=attachment%3B%20filename%3Daeneas-windows-setup-1.7.3.exe&response-content-type=application%2Foctet-stream|pid:10204,ProcessStart:131996663705176799

[hatton]

And the file is too large to submit to Microsoft's service where they would otherwise look at it.

[chrisvire]

@danielbair, do you have any time to look at this?

[danielbair]

I will try. It looks like something in the core python packages being included.

[chrisvire]

@danielbair, thank you!!

[seranus]

Is this going be fixed?

[danielbair]

Yes. Sorry, I haven’t had time yet. I’m traveling right now. I will rebuild it when I’m back home.

[danielbair]

I submitted the installer to Kaspersky Labs and they cannot find any trojan.

[danielbair]

New updated Windows installer with Python 3.7 can be found here... https://github.com/sillsdev/aeneas-installer/releases/tag/v1.7.3.0_2