Jump to content

GIT-Activity classified as Malware?


ErikX

Recommended Posts

Malwarebytes is blocking GIT.

GIT is used to check in and out software (see github.com for example).
I did not reinstall it or update GIT.
Guess the Malwarebytes signatures changed all the sudden?
 

Malwarebytes
www.malwarebytes.com

-Log Details-
Protection Event Date: 8/7/22
Protection Event Time: 1:21 AM
Log File: 7377721a-15de-11ed-bd51-d4bed96b36a6.json

-Software Information-
Version: 4.5.12.204
Components Version: 1.0.1725
Update Package Version: 1.0.58253
License: Premium

-System Information-
OS: Windows 10 (Build 19044.1826)
CPU: x64
File System: NTFS
User: System

-Exploit Details-
File: 0
(No malicious items detected)

Exploit: 0
(No malicious items detected)


(end)


 

 

Malwarebytes
www.malwarebytes.com

-Log Details-
Protection Event Date: 8/7/22
Protection Event Time: 1:21 AM
Log File: 73737b74-15de-11ed-bfc2-d4bed96b36a6.json

-Software Information-
Version: 4.5.12.204
Components Version: 1.0.1725
Update Package Version: 1.0.58253
License: Premium

-System Information-
OS: Windows 10 (Build 19044.1826)
CPU: x64
File System: NTFS
User: System

-Exploit Details-
File: 0
(No malicious items detected)

Exploit: 1
Malware.Exploit.Agent.Generic, C:\WINDOWS\system32\cmd.exe C:\WINDOWS\system32\cmd.exe \c git rev-parse HEAD, Blocked, 0, 392684, 0.0.0, , 

-Exploit Data-
Affected Application: cmd
Protection Layer: Application Behavior Protection
Protection Technique: Exploit payload process blocked
File Name: C:\WINDOWS\system32\cmd.exe C:\WINDOWS\system32\cmd.exe \c git rev-parse HEAD
URL: 



(end)

 

Link to post
Share on other sites

It is happening again, Malwarebytes does not like GIT:

Malwarebytes
www.malwarebytes.com

-Log Details-
Protection Event Date: 8/7/22
Protection Event Time: 1:22 PM
Log File: 3c9d1c3a-1643-11ed-bcdc-d4bed96b36a6.json

-Software Information-
Version: 4.5.12.204
Components Version: 1.0.1725
Update Package Version: 1.0.58279
License: Premium

-System Information-
OS: Windows 10 (Build 19044.1826)
CPU: x64
File System: NTFS
User: System

-Exploit Details-
File: 0
(No malicious items detected)

Exploit: 1
Malware.Exploit.Agent.Generic, C:\WINDOWS\system32\cmd.exe C:\WINDOWS\system32\cmd.exe \c git rev-parse HEAD, Blocked, 0, 392684, 0.0.0, , 

-Exploit Data-
Affected Application: cmd
Protection Layer: Application Behavior Protection
Protection Technique: Exploit payload process blocked
File Name: C:\WINDOWS\system32\cmd.exe C:\WINDOWS\system32\cmd.exe \c git rev-parse HEAD
URL: 



(end)

 

Link to post
Share on other sites

  • 1 year later...

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.