Possible FP - Bifrose

[dennisctech]

I think I have a false positive but I am not sure. I want to make sure my system is clean. A file named cf51e31.msi was detected as a Backdoor.Bifrose. Would anyone be able to see if this is a false positive? This was from a re-scan so I could get the file to upload it.

 

Malwarebytes Anti-Malware 1.75.0.1300

www.malwarebytes.org

 

Database version: v2014.05.28.02

 

Windows 7 Service Pack 1 x64 NTFS

Internet Explorer 11.0.9600.17107

 

5/28/2014 1:22:43 AM

mbam-log-2014-05-28 (01-22-43).txt

 

Scan type: Custom scan (C:\Windows\Installer\cf51e31.msi|)

Scan options enabled: File System | Heuristics/Shuriken | PUP | PUM

Scan options disabled: Memory | Startup | Registry | Heuristics/Extra | P2P

Objects scanned: 1

Time elapsed: 3 second(s)

 

Memory Processes Detected: 0

(No malicious items detected)

 

Memory Modules Detected: 0

(No malicious items detected)

 

Registry Keys Detected: 0

(No malicious items detected)

 

Registry Values Detected: 0

(No malicious items detected)

 

Registry Data Items Detected: 0

(No malicious items detected)

 

Folders Detected: 0

(No malicious items detected)

 

Files Detected: 1

C:\Windows\Installer\cf51e31.msi (Backdoor.Bifrose) -> Quarantined and deleted successfully.

 

(end)

 

cf51e31.zip

[miekiemoes]

Hi,

 

This is a false positive indeed and will be fixed in next database update.

Thanks for reporting!!

 

Extra note, it's no problem you removed this file anyway as it was just an installer.