You are here

DSynchronized detected as virus. Again.

3 posts / 0 new
Last post
Vladimir.RL
Offline
Last seen: 4 years 6 months ago
Joined: 2020-05-12 03:48
DSynchronized detected as virus. Again.

Here is summary of findings from Windows Security...
Threat detected:Trojan:Win32/Azden.B!cl
Alert level:Severe
Date:11.5.2020. 11:05
Category:Trojan
Details:This program is dangerous and executes commands from an attacker.

Affected items:
file: C:\Bin\PortableApps\DSynchronizePortable\App\DSynchronize\DSynchronize.exe

Not the first time. It would be interesting to find out what exactly caused hopefully false positive.

Ken Herbert
Ken Herbert's picture
Offline
Last seen: 7 hours 26 min ago
DeveloperModerator
Joined: 2010-05-25 18:19
You can verify false positives yourself

On the app's page just under the download button there is the Antivirus Scan link (here is the one for DSynchronize).

That page includes a link directly to VirusTotal for the current version.

silversword
Offline
Last seen: 4 years 6 months ago
Joined: 2020-05-30 07:13
Reported as malware by 4 AV's

Reported as malware by 4 AV's on virustotal.

Here's a sandbox analysis of the app as well: https://www.hybrid-analysis.com/sample/e1adab6af3131edd92547e6020b0743bd...

I'll bet it's this triggering the false positives: "Shell_TrayWnd" (Taskbar window class may be used to inject into explorer with the SetWindowLong method) and "DSynchronize.exe" searching for class "Shell_TrayWnd"

I think this is how DSynchronize is trying to create a systray icon in the taskbar.

Log in or register to post comments