Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

False Positive - VirusTotal #48

Open
ShadowWhisperer opened this issue Feb 10, 2024 · 7 comments
Open

False Positive - VirusTotal #48

ShadowWhisperer opened this issue Feb 10, 2024 · 7 comments

Comments

@ShadowWhisperer
Copy link
Owner

ShadowWhisperer commented Feb 10, 2024
edited
Loading

I am well aware of VirusTotal claiming this is malicious.

Submitted for manual review to Microsoft
300611241-3533be85-0039-47ff-af07-aa96fefc3e2f

Any posts mentioning this will be deleted. I am very aware.

You have 3 options

  1. Trust it (I don't care if you do or not)
  2. Build it from source
  3. Keep Edge installed
@FadeMind
Copy link

@ShadowWhisperer Maybe sign EXE files for sure with Cert or via GPG.
Reference: https://stackoverflow.com/a/49696454
I using ESET from years. No EXE false positives.
20240210-1707593882
Malwarebytes sees malware in probably everything not valid signed or repacked.
https://www.reddit.com/r/dotnet/comments/qszqbf/malwarebytes_false_positive/
and more
https://www.google.com/search?q=malwarebytes+false+positive+reddit

@SletRon
Copy link

SletRon commented Jun 17, 2024
edited
Loading

Is it possible to find out what sequence of commands the application is built with? I would be very grateful.

@ShadowWhisperer
Copy link
Owner Author

pyinstaller --noconsole --onefile -n Remove-Edge.exe edge.py --add-data "setup.exe;."

Repository owner deleted a comment from Andreyutsu Jul 7, 2024
@usefulstuffs
Copy link

@ShadowWhisperer Maybe sign EXE files for sure with Cert or via GPG. Reference: https://stackoverflow.com/a/49696454 I using ESET from years. No EXE false positives. 20240210-1707593882 Malwarebytes sees malware in probably everything not valid signed or repacked. https://www.reddit.com/r/dotnet/comments/qszqbf/malwarebytes_false_positive/ and more https://www.google.com/search?q=malwarebytes+false+positive+reddit

Just self-signing should be enough to make less detection rates.

@ShadowWhisperer
Copy link
Owner Author

Added certificate. We'll see how it goes. I haven't had anything "real" flag it from me, Since ~Dec of '23.

Repository owner deleted a comment from usefulstuffs Sep 13, 2024
@hndrx67
Copy link

hndrx67 commented Oct 1, 2024

@ShadowWhisperer I don't care if it has a virus payload or just a normal edge remover, I have a ton of pirated softwares anyway, maybe my data is already stolen idc, fck my data. Thanks for this mate, finally gotten rid of my crap edge.

@ltguillaume
Copy link

ltguillaume commented Oct 1, 2024
edited
Loading

@ShadowWhisperer I don't care if it has a virus payload or just a normal edge remover, I have a ton of pirated softwares anyway, maybe my data is already stolen idc, fck my data. Thanks for this mate, finally gotten rid of my crap edge.

Your data oftentimes contains (sensitive) data of others, too, so that's no way to treat it.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
6 participants
@ltguillaume @FadeMind @ShadowWhisperer @SletRon @hndrx67 @usefulstuffs