Malware in Prismatik\offsetfinder.exe
cyb3rw0lf opened this issue · comments
Malware detected during the installation of offsetfinder.exe and installation aborted.
Antivirus: Bitdefender
The file C:\Program Files\Prismatik\unins000.dat is infected with Gen:Trojan.Heur3.LPT.eu0@auoDD6dib and was moved to quarantine.
The file is automatically quarantined but if I try to restore it to upload it to virustotal I get an empty file.
I managed to install it in a VM and check which file is triggering the AV and it's offsetfinder.exe
The offsetfinder.exe from version 5.11.2.29
is not reported as malicious from bitdefender scan and have only 4 matches on VirusTotal compared with 19 of the new version.
The source code for offsetfinder has not changed in any of the recent releases. If you don't use DX injection, which is no longer needed/recommended, you can keep it quarantined.