Jump to content

Malware.AI.4199075397 false positive


ai_enabled

Recommended Posts

Hello!
We're the developer of CryoFall—a PC videogame distributed in Steam. All game binary files are signed with our Sectigo code signing certificate and built in 100% clean environment.
One of the game files suddenly got detected by your software.
VirusTotal report https://www.virustotal.com/gui/file/e6d98657bfc80380403ca8a286b964ecff2ac867730aaf4ebbf2ee38bd7f59e6/detection as you can see only your software detects something odd.
User report is here https://steamcommunity.com/app/829590/discussions/2/3105775128742978219/
I've attached the binary file to this message.

CryoFall_Compiler.7z

Link to post
Share on other sites

  • Staff

Hi,

I can't reproduce detection on this file. Can you rescan again and see if it's still detected on your end?

Please note, don't base detections on Virustotal results only as our engine format and configuration in VirusTotal is different than our consumer and corporate products’ default configuration. In VirusTotal we use a command-line engine with different configuration and detection techniques/heuristics which might detect more than the commercial product. There are also false-positive suppression mechanisms in the commercial product which are not present in the command-line engine in VirusTotal.

This file is not detected locally anymore. This will eventually fix itself in Virustotal as well, as we don't have control over this.

 

Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.