digitalmars.D - dlang compiled app reported as trojan
- Andrea Fontana (12/12) Oct 08 2023 Several users have reported that my app binaries are being
- Walter Bright (2/2) Oct 08 2023 Those malware detectors often flag non-Microsoft runtime library code as...
- bachmeier (8/11) Oct 08 2023 They wouldn't even have to fix it. A starting point would be to
- Guillaume Piolat (6/10) Oct 09 2023 You need to submit your binaries and complain that not all D
- ryuukk_ (5/17) Oct 09 2023 You need to submit the file here:
- Andrea Fontana (2/6) Oct 09 2023 I filled that form two days ago, still no replies :)
- Andrea Fontana (6/14) Oct 12 2023 I have some news.
Several users have reported that my app binaries are being reported as trojans by Windows Defender. They are compiled from a github action using ldc-latest. I see this problem has appeared in the past, is there any solution/workaround/patch? The reported trojan by user is the same reported in this issue: https://issues.dlang.org/show_bug.cgi?id=20403 But uploading exe to Microsoft Security Intelligence, they say my exe is infected by Trojan:Script/Sabsik.FL.A!ml Obviously this scared the users a lot. Andrea
Oct 08 2023
Those malware detectors often flag non-Microsoft runtime library code as malware. What it takes to fix it is to contact the people who write the detectors.
Oct 08 2023
On Sunday, 8 October 2023 at 18:59:01 UTC, Walter Bright wrote:Those malware detectors often flag non-Microsoft runtime library code as malware. What it takes to fix it is to contact the people who write the detectors.They wouldn't even have to fix it. A starting point would be to give an honest error message like "Microsoft Defender has detected that this is potentially malicious software. If you don't trust the source, you should cancel the installation." Their message gives the impression that they've confirmed it to be malware even though they haven't. Given Microsoft's culture, it shouldn't be surprising they operate like that.
Oct 08 2023
On Sunday, 8 October 2023 at 15:50:36 UTC, Andrea Fontana wrote:But uploading exe to Microsoft Security Intelligence, they say my exe is infected by Trojan:Script/Sabsik.FL.A!ml Obviously this scared the users a lot.You need to submit your binaries and complain that not all D software is malware. The more we do it, the more we win collectively. I do this any time a user mention an AV false positive for me. Every AV vendor has an email to send binaries as false positive.
Oct 09 2023
On Sunday, 8 October 2023 at 15:50:36 UTC, Andrea Fontana wrote:Several users have reported that my app binaries are being reported as trojans by Windows Defender. They are compiled from a github action using ldc-latest. I see this problem has appeared in the past, is there any solution/workaround/patch? The reported trojan by user is the same reported in this issue: https://issues.dlang.org/show_bug.cgi?id=20403 But uploading exe to Microsoft Security Intelligence, they say my exe is infected by Trojan:Script/Sabsik.FL.A!ml Obviously this scared the users a lot. AndreaYou need to submit the file here: https://www.microsoft.com/en-us/wdsi/filesubmission/ Tell them the stack you are using, it usually rake less than 24h to get a response back
Oct 09 2023
On Monday, 9 October 2023 at 22:02:54 UTC, ryuukk_ wrote:You need to submit the file here: https://www.microsoft.com/en-us/wdsi/filesubmission/ Tell them the stack you are using, it usually rake less than 24h to get a response backI filled that form two days ago, still no replies :)
Oct 09 2023
On Tuesday, 10 October 2023 at 06:13:23 UTC, Andrea Fontana wrote:On Monday, 9 October 2023 at 22:02:54 UTC, ryuukk_ wrote:I have some news. It seems this make windows stop complaining about malware. https://forum.dlang.org/post/xgzxmavnancrhchueifo forum.dlang.org So what's wrong with libcurl.dll? AndreaYou need to submit the file here: https://www.microsoft.com/en-us/wdsi/filesubmission/ Tell them the stack you are using, it usually rake less than 24h to get a response backI filled that form two days ago, still no replies :)
Oct 12 2023