Jump to content

Any application built with C++ Builder results in false positive


Tracer1808
 Share

Recommended Posts

Even when creating an empty Embarcadero C++ Builder application (Windows VCL Application) it results in "Malware blocked" (see the image). Considering C++ Builder & Delphi use the same IDE and library (VCL), I think the same applies to Delphi apps as well. In the attachment I send Project1.exe which is immediately upon starting moved to quarantine. This exe is using runtime dll/package linking, but if you successfully run the app (it is not detected as malware) then it's not about the exe, but about those additional libraries which I can send you later on.

46bf95da8e2b8e36b5b59f8c6e8225c7fde84541.png

Project1.zip

Link to post
Share on other sites

  • Staff

Thanks for reporting. 

Quote

Also, If you are a developer, while building your application,  I suggest you exclude the working/building directory from detection via the exclusion settings in Malwarebytes. This since our Anomaly detection might possibly detect some of the files you are building.
Once the application/project is final and ready to be shared with others, in most cases it won't be detected anymore since it won't be triggered as "anomalous" anymore either.

In case a "final project" is still detected, please let us know (include the sample), so we can add it to our database of known good apps as well to prevent this in the future.

For more information, please read  MachineLearning/Anomalous Detections and Explanation.

Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
 Share

  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.