pico icon indicating copy to clipboard operation
pico copied to clipboard

Published 20 hours ago verified publisher icon picocss

Detected Trojan:Script/Wacatac.B!ml in latest downloads

Open circuitbomb opened this issue 11 months ago • 4 comments

Describe the issue

Malware Trojan:Script/Wacatac.B!ml detected.
->pico-2.0.6.zip ->pico-main.zip

Current Behavior

Downloads blocked or files quarantined.

Expected Behavior

CSS

circuitbomb avatar Mar 09 '24 05:03 circuitbomb

@circuitbomb, are you sure? I scanned the archive with several tools, and I did not find any malware/viruses. What tools did you use?

lucaslarroche avatar Mar 09 '24 08:03 lucaslarroche

It's automatically getting quarantined by Windows when downloaded via Chrome. When I downloaded 1.5.11 in Jan. it was fine, but latest is doing this. I understand its quite likely a false positive; I just wanted to bring it to attention.

circuitbomb avatar Mar 09 '24 15:03 circuitbomb

It's automatically getting quarantined by Windows when downloaded via Chrome. When I downloaded 1.5.11 in Jan. it was fine, but latest is doing this. I understand its quite likely a false positive; I just wanted to bring it to attention.

Also, none of the downloads are getting flagged prior to 2.0.1 release

circuitbomb avatar Mar 09 '24 15:03 circuitbomb

the !ml means machine learning, that the code is identified as trojan by heuristic which yields false positives. Happened to me last month in unrelated thing

MiroslavPetrik avatar Mar 09 '24 17:03 MiroslavPetrik