WakaTime Detected as Malicious by VirusTotal:

[syedtasavour]

WakaTime Detected as Malicious by VirusTotal:

I have analyzed the WakaTime executable (wakatime-win32-x64.exe) using VirusTotal, and the file was flagged by 2 out of 64 security vendors. Notably, both Google and Ikarus detected the presence of malware. The specific threat identified by Ikarus is a Trojan.Win32.Pterodo, which raises concerns about the file’s integrity and safety.

Environment:

• OS: Windows 11
• Platform: amd64

VirusTotal Scan Details:

• File: wakatime-win32-x64.exe
• Flagged by: Google (Detected), Ikarus (Trojan.Win32.Pterodo)
• Link: VirusTotal Scan Result

Steps Taken:

1. Downloaded the WakaTime executable from the official website.
2. Ran the file through VirusTotal for security analysis.
3. The scan revealed a true positive detection of malicious content.

Impact:

This detection suggests that the WakaTime executable may be compromised, posing a potential security risk to users. Immediate investigation and remediation are needed to protect users who might unknowingly install a malicious version of the software.

Logs and Additional Information:

If needed, I can provide further logs or details from the VirusTotal analysis for further investigation.

[syedtasavour]

I would like to request the deletion of this issue as it pertains to a desktop application rather than the CLI. I raised this issue here due to incorrect website redirection. I also verified the repository name, and it appears that the Ahrefs link is incorrect as well. I have since realized that this is a CLI repository, and my concern is related to the desktop version.

Thank you for your understanding.