Microsoft Windows Defender found the threat in fspy-1.0.3-x86_64.AppImage

[LLKoder]

Threat detected: Trojan:AndroidOS/AndroRat Alert level: Severe Date: 07.03.2020 13:08 Category: Trojan Details: This program is dangerous and executes commands from an attacker.

Affected items:

file: C:\Users[user]\Downloads\fspy-1.0.3-x86_64.AppImage webfile: C:\Users[user]\Downloads\fspy-1.0.3-x86_64.AppImage|https://github-production-release-asset-2e65be.s3.amazonaws.com/137477588/a0486f00-0e68-11e9-97d0-7f6e1cfd6e86?X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Credential=AKIAIWNJYAX4CSVEH53A%2F20200307%2Fus-east-1%2Fs3%2Faws4_request&X-Amz-Date=20200307T030353Z&X-Amz-Expires=300&X-Amz-Signature=f39a3f3727ca7a58314cb23b69e7898fbc49b9ea16933df8da04cc793ced3c10&X-Amz-SignedHeaders=host&actor_id=0&response-content-disposition=attachment%3B%20filename%3Dfspy-1.0.3-x86_64.AppImage&response-content-type=application%2Foctet-stream|pid:9416,ProcessStart:132275344592450229

[stuffmatic]

Are you able to reproduce this? Do you get the same message of you download the file again? Or if you download it on a different computer?

[LLKoder]

1.0.3 - yes. 1.1.0b3 - no What does happen with 1.0.3? Is it a virus?

[Beryesa]

https://www.virustotal.com/gui/file/2feaac484c6e124cd99239d5fc9eabad9dc15ea59077e21fb0de9ade4bd01770/detection

Btw this (the AppImage) is a portable linux executable, why did you download this to windows :D

[LLKoder]

'cause I have Linux either and I download all distributive of one version (interesting for me) on my computer. And that report was created by Windows Defender in Windows, no VT. I hope I understandably explain. :DDD