Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Malwarebytes flagging MinimizeToTray as Malware? #20

Open
JRMVideo opened this issue Jun 6, 2023 · 4 comments
Open

Malwarebytes flagging MinimizeToTray as Malware? #20

JRMVideo opened this issue Jun 6, 2023 · 4 comments

Comments

@JRMVideo
Copy link

JRMVideo commented Jun 6, 2023

I'm curious on why Malwarebytes is quarantining this? VirusTotal has 4 detectors as well. Wasn't an issue before but now is?
@sandwichdoge
Copy link
Owner

It's a false positive. The AutoIt3 interpreter engine is used by many malware makers because of how easy it is to make a portable executable on Windows. The antiviruses just mark the signature of the binaries as malicious, this signature is similar on some/most AutoIt3 binaries, so they all get lumped together as malware.
This has been an issue with AutoIt3 binaries for years.

@JRMVideo JRMVideo changed the title Malwarebytes flagging as Malware? Malwarebytes flagging MinimizeToTray as Malware? Jun 10, 2023
@trulycool
Copy link

I got a Trojan warning for the latest release w/ WebRoot. Clearly the same explanation above re: Malwarebytes would apply here. It's a shame, since post XZ Utils fiasco this [false positives] becomes much more of an issue...

@raingros
Copy link

raingros commented Jun 8, 2024

Still flagged as malicious.
https://www.virustotal.com/gui/file/82a8633c53e9f9106478b175490e8d215ddbf543b6ce76ef010955b0e71e78a7

@pa-0
Copy link

pa-0 commented Sep 28, 2024
edited
Loading

I can't speak for MinimizeToTray specifically because I have not used it yet, BUT

just a tip for anyone who encounters these issues generally:

Tip

You can submit any file to: Microsoft File Security Analysis

You'll find that this is incredibly valuable for two reasons:

  1. The file/app undergoes two operations.

    • First, it will be scanned automatically, and you'll be notified shortly if Microsoft's scanners find anything concerning.
    • At the same time, it will also be submited to a queue, and within hours, it will be analyzed by a human security analyst at Microsoft. You will be able to check back for status, and eventually notified if the file is definitively safe or not.

  2. Equally great in my opinion, is the fact that these results will automatically be loaded into Microsoft Defender globally the next time Defender updates its definitions (which it does on a regular basis by default.

    This means that if the file is safe, not only you, but EVERYONE who uses Defender, will no longer have to deal with the headache of a false positive when the file is downloaded / run. So it benefits you personally as well as the community at large.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
5 participants
@trulycool @raingros @sandwichdoge @JRMVideo @pa-0