My product GT4T is falsely detected as virus: JS:Trojain.Cryxos.9218

flowerpiggy · 2022-05-17T12:54:02+00:00

There was an error rendering this rich post.

Dear sir or madam,

GT4T has been around for over 10 years and suddenly it's reported as a virus by BT.

The reported infected files are written by me line by line and are then obfuscated.

I already submitted through the form but I still receive complaints from users. I apologize if this is not the correct way to use this forum.

GT4T download link:

gt4t.net

Kind regards,

Dallas, GT4T developer

Find more posts tagged with

Comments

Gjoksi

Hello.

I downloaded the two Setup files from here:

http://gt4t.net/download.php

with the latest BD threat database and the files were downloaded without any problems. The download of the files wasn't blocked by Bitdefender, meaning that Bitdefender didn't find any malware in those files.

Also, just to be sure, i did a scan of the files on my laptop and here are the results:

Also, here are the VirusTotal results for them:

https://www.virustotal.com/gui/file/65b4e3272e9caf1edf665c5a37d31dd86893cdb04412a6c50657a3e6fd3817b9

So, it seems that the files are clean!

Regards.

Scott

Same results on my end, too, as with Gjoksi79_. Build 26.0.16.69

antanilla

Hi,

I've just downloaded the latest version of GT4T and it is detected as a trojan by BitDefender, as explained by Dallas above. I'm not the creator — Just a GT4T user. It would be great if BitDefender fixed this.

Thanks!

Natalia

Flexx

https://community.bitdefender.com/en/discussion/91796/my-product-gt4t-is-falsely-detected-as-virus-js-trojain-cryxos-9218

https://community.bitdefender.com/en/discussion/comment/310439#Comment_310439

I downloaded the application setup and scanned it with bitdefender but the application setup reported no detection via bitdefender.

In order to proceed further, I downloaded innoextract tool from https://constexpr.org/innoextract/ which helps to extract every file from the application setup excecutable without installing the application itself.

I can confirm that scanning the application setup with bitdefender will not pop up any detection until one will go forward and try to install the application completely.

All detections are basically javascript based (JS:Trojan.Cryxos.9218)

Below are the virustotal links for the detected files:

https://www.virustotal.com/gui/file/d2a51660acf26bfb71fcfbb1d84648897597c946242c6f90b28918605aefee50?nocache=1

https://www.virustotal.com/gui/file/c3b5b804fdf746246d5c27cbb8f37e60d66064462b0b0870603207bbe1692026?nocache=1

https://www.virustotal.com/gui/file/84c3db0cd1fbdaedf66765e0b391049c746d0fe226df9dbef2611aa7e3872792?nocache=1

https://www.virustotal.com/gui/file/9b059aa03591d11579489755952adc781c028b164a145d1ad216586ff568e3a7?nocache=1

https://www.virustotal.com/gui/file/8c6e36904eba016d533a3b10e76536ef5c328e46f5fe2f3810d66e4c7f5034f8?nocache=1

https://www.virustotal.com/gui/file/dd2804cf592339750f9801fb9248042aac79c6ba149a330f83e585680f4d4393?nocache=1

https://www.virustotal.com/gui/file/eb70a5580dcb0350d2dbb844c63485dde597f7dad2a4fa6b65e9bd5def7dcbb9?nocache=1

https://www.virustotal.com/gui/file/8d31fce1da2bace2ac4eb3eba9d7f5695af95762af995a1d6677bdc70042e87b?nocache=1

https://www.virustotal.com/gui/file/5c9b46e10e9a0869cde94cf2263e54b9977b6fa046c0a5961503c2d259b75234?nocache=1

https://www.virustotal.com/gui/file/af6fd80661a05cfe088963cdb4e3c2c990f93b1c2fdcb5d29798a5062136335d?nocache=1

https://www.virustotal.com/gui/file/572d12ffb26d72dfc3940a096c5c7926e1fe0b07f8926d228996042192da84c3?nocache=1

https://www.virustotal.com/gui/file/8b72b40790960d41bcd796465b18e1bdce106622f907bb0dcba15b4ec3190769?nocache=1

https://www.virustotal.com/gui/file/47095a5922e5a8f9a40b00c6fd8c36e791c10bede5728870b314a7ec66898970?nocache=1

https://www.virustotal.com/gui/file/384c758065911e57c9d2743131b5037b7c9173f83881e77664a604463c8cfe17?nocache=1

https://www.virustotal.com/gui/file/aae645a46498b3b4162d5126b3ea303870272331505fd9b3538b6e507e19ed6c?nocache=1

https://www.virustotal.com/gui/file/cd2169c5140a6fab869b4b1b633ed12b0e6f5b2e9249727c3d33905954eb484c?nocache=1

https://www.virustotal.com/gui/file/41f8a176f0790f8ddb5c4d68d4c28041a8f3c327d58a5fe607ebe9ed9aae795c?nocache=1

https://www.virustotal.com/gui/file/0465dbfdd3c15c99711926cf4317a857225d25c23ebba132e8ee82312858f889?nocache=1

https://www.virustotal.com/gui/file/61fa6cfeabe21fd02435a43c567a8d1bf859a8ced6ad84e83cd79025c96ea942?nocache=1

https://www.virustotal.com/gui/file/4166b02aea85ff29e80bae07bb5f78b225392e95c9737aa8576b6fbc893a6e7f?nocache=1

https://www.virustotal.com/gui/file/4dbd3f74ff9fbe552d55deccde21f434dccdad871a827da45a62746a83534cdc?nocache=1

https://www.virustotal.com/gui/file/c2ad7e6e3aa682716a8b0278350f60b3c00a461dfded3afea8455f1e1e9057a3?nocache=1

Will share the samples with malware research team and see if they think it will be safe to remove these detections. The whole workaround may take upto 72 hours. Will request you to please wait until the given time period.

Additionally, if @Alexandru_BD, @Mike_BD can share these virustotal links with the malware researchers directly and ask them to remove the detection, this will speed up the process.

Regards

Alexandru_BD

Hi @flowerpiggy, @mrmirakhur

I hereby confirm the malware researchers have removed the signature and it should not be detected in the next update.

Cheers

Flexx

I have also received the confirmation message from the malware researchers through support team regarding the removal of the detection.

Regards

Quick Links

All Categories
Recent Posts
Activity
Best Of