B4J Question Virus into app packaged from the IDE

DavideV

DavideV

Active Member
Licensed User
Longtime User
Hello,
I successfully created a packaged B4J app that uses jserial, including jssc.dll and all is working fine both from the IDE and from the packaged app if started from run_debug.bat.

But when I try to start it from the packaged exe, inside the same Build folder , Microsoft defender antivirus stops it immediately telling me about a virus inside:
Trojan:Win32/Wacatac.E!ml

virus description

How it is possible?
The app is built using JDK14
Cattura.PNG
 
Sort by date Sort by votes
thetahsk

thetahsk

Active Member
Licensed User
Longtime User
Check your system first with e.g
www.malwarebytes.com

AdwCleaner 2023 - Free Adware Cleaner & Removal Tool | Malwarebytes

Download Malwarebytes AdwCleaner 2023 for free to remove adware, bloatware, unwanted toolbars, and other potentially unwanted programs (PUPs) from your Windows PC. AdwCleaner destroys adware and restores your PC's performance.
www.malwarebytes.com www.malwarebytes.com

and study this
howtofix.guide

Trojan:Win32/Wacatac.D!ml (Wacatac Trojan) — How To Fix Guide

Trojan:Win32/Wacatac.D!ml - Is your computer infected? Here you will find detailed information about trojan Wacatac.
howtofix.guide howtofix.guide
 
Upvote 0
DavideV

DavideV

Active Member
Licensed User
Longtime User
Thanks thetahsk,
That's quite strange but yes, it has something to do with one particular PC.
I compiled the app again on a different PC and, on that, it runs fine in any way: from IDE, from packaged EXE and from .bat debug file.

Then i moved the packaged, working app, on the previous PC and got the app deleted by the antivirus again...
I don't understand, maybe a false positive but with the same antivirus on both PC (windows defender) ? ?

Fortunately I can use the bat file to start it , the difference is the debug window.
 
Upvote 0
tchart

tchart

Well-Known Member
Licensed User
Longtime User
This has come up before. The packaged exe works by creating a new process (ie starting Java). This is seen as a possible threat by "AI" based antivirus/antimalware software. I had this problem with Malwarebytes. I reported this as a false positive and don't have the issue anymore.
 
Upvote 0
DavideV

DavideV

Active Member
Licensed User
Longtime User
tchart said:
This has come up before. The packaged exe works by creating a new process (ie starting Java). This is seen as a possible threat by "AI" based antivirus/antimalware software. I had this problem with Malwarebytes. I reported this as a false positive and don't have the issue anymore.
Click to expand...
Thanks for the explanation, I'll try to set Windows defender to ignore the executable file.
 
Upvote 0
You must log in or register to reply here.

Similar Threads

cjpryor
  • Question
B4J Question Any issues with VirusTotal flagging your .exe files?
Replies
2
Views
797
cjpryor
cjpryor
Erel
  • Article
B4J Tutorial MacSigner - Building notarized Mac packages
2
Replies
33
Views
58K
hatzisn
hatzisn
nobbi59
  • Question
B4J Question Standalone Package detected as Virus
Replies
10
Views
3K
Erel
Erel
MichalK73
  • Question
B4J Question Virus in app B4J (Java:Agent-IGU [Trj]) ??
Replies
4
Views
2K
Rubsanpe
Rubsanpe
Erel
  • Locked
  • Article
B4J Tutorial UI apps packaging - self contained installers
6 7 8
Replies
147
Views
85K
Erel
Erel
Top