log4j-finder icon indicating copy to clipboard operation
log4j-finder copied to clipboard

Published 20 hours ago verified publisher icon fox-it

Symantec Endpoint Protection detects as Trojan

Open goztrk opened this issue 3 years ago • 3 comments

Windows executable version of this repo is being detected as Trojan.Gen.2.

Symantec Endpoint Version 14.3.4637.2000 image

goztrk avatar Dec 20 '21 05:12 goztrk

You can see and read the source code. It’s extremely simple to make an exe out of this (I’ve done it for myself because I wanted the output in a slightly different format). If your AV solution thinks it has a problem, this should then be considered as a false positive and handled as such: report to the support of that AV solution and in the mean time make an exclusion for it.

Robby-Swartenbroekx avatar Dec 20 '21 06:12 Robby-Swartenbroekx

Yes, I already did that but wanted to inform about the issue.

goztrk avatar Dec 20 '21 11:12 goztrk

7 security vendors and 1 sandbox flagged this file as malicious

изображение

Aleksey-Maksimov avatar Dec 30 '21 13:12 Aleksey-Maksimov