Process Hacker and Windows discussion

 
User avatar
Stoli
Member
Posts: 16
Joined: 11 Mar 2016 15:59
OS: Windows 10 Pro x64

Setup file for PH 3.0.3118 flagged as malware

18 Jun 2020 22:12

PH automatically notified me that 3.0.3118 was available. I opted to download and install from within the PH interface, and the setup file itself (processhacker-setup.exe) was flagged by Windows Defender as malware right after I clicked "Install". VirusTotal shows other detections as well. Are these for real?

VirusTotal link:

https://www.virustotal.com/gui/file/6b3 ... 1592475658

From the Windows event log:

Windows Defender Antivirus has detected malware or other potentially unwanted software.
For more information please see the following:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Name: Trojan:Script/Wacatac.C!ml
ID: 2147749377
Severity: Severe
Category: Trojan
Path: file:_C:\Users\UserName\AppData\Roaming\Process Hacker\Cache\EGZCHZQEJHGURFP\processhacker-build-setup.exe
Detection Origin: Local machine
Detection Type: FastPath
Detection Source: Real-Time Protection
User: COMPUTERNAME\UserName
Process Name: C:\Program Files\Process Hacker\ProcessHacker.exe
Security intelligence Version: AV: 1.317.1666.0, AS: 1.317.1666.0, NIS: 1.317.1666.0
Engine Version: AM: 1.1.17100.2, NIS: 1.1.17100.2