IL:Trojan.MSILZilla.21341 False positive or real?
Hello. I received a file from a WIP game project consisting of some exe and other scripts.
Bitdefender flags it as infected with ith IL:Trojan.MSILZilla.21341
Does anyone know anything about it? Also their project website was marked as suspicious.
The developer says its because of some encrypted file with a digital signature Sha-1 Class 3
Does anyone have an opinon on this?
Thanks !
Comments
-
Hello.
You can report the file and/or URL as false positive to Bitdefender Labs here:
The malware researchers will analyze the file and see if it is falselly detected as malware or not.
So, wait for their resposne.
Also, you could do the following steps:
First, take screenshot(s) of the issue,
create a log file on your Windows device using Bitdefender Support Tool, by following these steps:
and
create a log file on your Windows device using BDsysLog, by following these steps:
Next, contact Bitdefender Consumer Support by e-mail:
with short description of the issue.
After that, you will get an automated reply by the Bitdefender Customer Care Team, with your ticket number.
Now, in reply to that automated reply, you can send the screenshot(s) you already took and the log files you already created in the first step.
Since you are all done, just wait for the support engineers to investigate your issue and find a solution to fix the issue.
Remember that the screenshot(s) and the log files will help a lot to the support engineers for better and faster investigation on your issue and finding a solution.
Regards.
1 -
Can you share the virustotal link here.
Regards
Life happens, Coffee helps!
Show your Attitude, when you reach that Altitude!
Bitdefender Ultimate Security Plus (user)
0 -
I have sent the zipped .exe file to Bitdefender Labs for False Positive detection
1 -
This is still work in progress. I placed a screenshot.
Does it look bad or should wait for final report? I uploaded the zip file. I had to temporary disable BitDefender to zip the exe (maybe not a good way) because it would automatically delete it..
Do i just need to paste the link to this report?
0 -
This is the VirusTotal link
0 -
The sample may be malicious since it is also getting detecting by microsoft, sophos & eset as per virustotal.
Nevertheless, you have already shared the sample with the malware researchers. Kindly be informed that you will not receive a response back from the malware researchers related to the sample that you have shared. If the detection is indeed false positive, it will removed in maximum of 72 hours. If detection stays even after 72 hours, consider the file to be malicious by malware researchers.
Regards
Life happens, Coffee helps!
Show your Attitude, when you reach that Altitude!
Bitdefender Ultimate Security Plus (user)
2 -
Ok thanks. So after 72 hours (or within) if i scan again the file and nothing is detected it means it was false positive and its safe, otherwise not
0 -
Absolutely correct.
Regards
Life happens, Coffee helps!
Show your Attitude, when you reach that Altitude!
Bitdefender Ultimate Security Plus (user)
1 -
As per current status it seems that the detection has been removed but it may be possible that the detection might get recreated again.
Regards
Life happens, Coffee helps!
Show your Attitude, when you reach that Altitude!
Bitdefender Ultimate Security Plus (user)
0 -
Update:
The detection has been recreated by the malware researchers since the file being malicious.
Regards
Life happens, Coffee helps!
Show your Attitude, when you reach that Altitude!
Bitdefender Ultimate Security Plus (user)
1
