Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

IronmanPowershellHost.exe being flagged as malicious by our antivirus application. #85

Open
OutcastColt opened this issue Sep 17, 2024 · 4 comments
Labels
bug Something isn't working
Milestone

Comments

@OutcastColt
Copy link

OutcastColt commented Sep 17, 2024

IronmanPowershellHost.exe being flagged as malicious by our antivirus application. Antivirus being used is Trellix ENS

https://www.virustotal.com/gui/file/094e4c5521c1091549ad836c543f744cf54118e59edc757e82bbd0d31c757dc6

location of IronmanPowershellHost.exe, C:\Program Files (x86)\Microsoft Visual Studio\2017\Enterprise\Common7\IDE\PublicAssemblies\Hosts

@kitahusky
Copy link

Same issue here Antivirus is flagging the extension as malicious

@DeSimoD
Copy link

DeSimoD commented Sep 30, 2024

Same issue today with our Antivirus "WithSecure Elements Agent" for IronMan PowerShell Packager. Also the installer is afected.

Reason: TR/Redcap.xlgnm found.

@kingletit
Copy link

Same with Norton: win32:malwareX-gen

@adamdriscoll adamdriscoll added this to the 2024.11.0 milestone Nov 5, 2024
@adamdriscoll adamdriscoll added the bug Something isn't working label Nov 5, 2024
@adamdriscoll
Copy link
Member

We are going to download this file during the packaging process to avoid having it affect all of PowerShell Tools. Still looking into why it is being flagged.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
bug Something isn't working
Projects
None yet
Development

No branches or pull requests

5 participants