ChatGPT icon indicating copy to clipboard operation
ChatGPT copied to clipboard

Published 20 hours ago • verified publisher icon lencx

[Security] Potential Malware Version 0.11.1

Open razvanazamfirei opened this issue 1 year ago • 4 comments

Description

Potential malware in windows version. See link for analysis.

http://www.hybrid-analysis.com/sample/fc1e1c107ce5abed0793c1fda89baa841bb52e431fa2c3bb5a621b9ab249c37c

Motivation

No response

Alternatives

No response

Additional context

No response

razvanazamfirei avatar Mar 05 '23 02:03 razvanazamfirei

Exec from obtained from the lencx/ChatGPT repo. hxxps://github.com/lencx/ChatGPT/releases/download/v0.11.1/ChatGPT_0.11.1_windows_x86_64.msi

razvanazamfirei avatar Mar 05 '23 02:03 razvanazamfirei

Same with v0.12.0

https://www.hybrid-analysis.com/sample/ed09b660a16215844f5072e6ea4821c17dcaa3eb9e3a48e864d9428850d48973

mike-lowski avatar Mar 05 '23 08:03 mike-lowski

This is the 2nd time this has happened. The last time it happened I got a malware alert from a version obtained by using the auto update in the program.

GreenTeaBD avatar Mar 05 '23 13:03 GreenTeaBD

Microsoft is known for persistently installing the Edge browser into the system. And that this may be the source of some users' concerns. However, the Webview2 version can be downloaded directly from Microsoft's website to ensure that it is a safe and legitimate installation.

You can install the latest Webview2 version from Microsoft directly. https://developer.microsoft.com/de-de/microsoft-edge/webview2/#download-section

I also scanned it with Hybrid-analysis which got flagged too. https://www.hybrid-analysis.com/sample/65f6efdf6df4095971a95f4bf387590ae63109388344632a22458265ab7dd289

Virustotal says its clean: https://www.virustotal.com/gui/file/65f6efdf6df4095971a95f4bf387590ae63109388344632a22458265ab7dd289

Vulcanraven91 avatar Mar 05 '23 23:03 Vulcanraven91