openvpn-install-2.4.0-I602 flagged in Virus total
Posted: Fri Mar 10, 2017 11:13 pm
The business wants to use this software but I am getting pushed back by Info Security because it is getting flagged by Virus Total
[url]https://www.virustotal.com/en/file/d449 ... 489181864/[/url]
I've tried to tell them before that typically just one positive isn't a good indicator that a file is infected but they don't seem to want to hear that. I scanned the older version and it also gets flagged by Baidu as well as the most recent stable from the direct link site:
[url]https://www.virustotal.com/en/file/8a43 ... 489089699/[/url]
[url]https://www.virustotal.com/en/file/e355 ... 489181930/[/url]
I've scanned the actual source files in the zip and they come clean. If anyone could offer anymore detailed analysis that would be helpful. I dug a bit more and Baidu is a chinese AV company so I have no idea how reliable they are and I've had issues with Zillya before as well. From what I could find Baidu seems to have some strange heuristics that flag some normal things like bitcoin wallets and such.
I was able to verify the PGP keys with samuli's key so I have that to pass along to them as well.
Anyway, again if anyone could offer any other info or assurance that would be helpful
[url]https://www.virustotal.com/en/file/d449 ... 489181864/[/url]
I've tried to tell them before that typically just one positive isn't a good indicator that a file is infected but they don't seem to want to hear that. I scanned the older version and it also gets flagged by Baidu as well as the most recent stable from the direct link site:
[url]https://www.virustotal.com/en/file/8a43 ... 489089699/[/url]
[url]https://www.virustotal.com/en/file/e355 ... 489181930/[/url]
I've scanned the actual source files in the zip and they come clean. If anyone could offer anymore detailed analysis that would be helpful. I dug a bit more and Baidu is a chinese AV company so I have no idea how reliable they are and I've had issues with Zillya before as well. From what I could find Baidu seems to have some strange heuristics that flag some normal things like bitcoin wallets and such.
I was able to verify the PGP keys with samuli's key so I have that to pass along to them as well.
Anyway, again if anyone could offer any other info or assurance that would be helpful