Process Hacker and Windows discussion

User avatar
Posts: 16
Joined: 11 Mar 2016 15:59
OS: Windows 10 Pro x64

Setup file for PH 3.0.3118 flagged as malware

18 Jun 2020 22:12

PH automatically notified me that 3.0.3118 was available. I opted to download and install from within the PH interface, and the setup file itself (processhacker-setup.exe) was flagged by Windows Defender as malware right after I clicked "Install". VirusTotal shows other detections as well. Are these for real?

VirusTotal link: ... 1592475658

From the Windows event log:

Windows Defender Antivirus has detected malware or other potentially unwanted software.
For more information please see the following: ... terprise=0
Name: Trojan:Script/Wacatac.C!ml
ID: 2147749377
Severity: Severe
Category: Trojan
Path: file:_C:\Users\UserName\AppData\Roaming\Process Hacker\Cache\EGZCHZQEJHGURFP\processhacker-build-setup.exe
Detection Origin: Local machine
Detection Type: FastPath
Detection Source: Real-Time Protection
Process Name: C:\Program Files\Process Hacker\ProcessHacker.exe
Security intelligence Version: AV: 1.317.1666.0, AS: 1.317.1666.0, NIS: 1.317.1666.0
Engine Version: AM: 1.1.17100.2, NIS: 1.1.17100.2