False Positive Submission (Malware.Heuristic.1003)

[CGS]

Hello!
We have checked our software on virustotal and got false positive detections (Malware.Heuristic.1003).
Please check the protected zip file with sample: https://cloud.cgames.app/s/oHRetZaxDQPmX5q
Password for the zip file is “infected” (without quotes).
The archive also contains link to virustotal reports.
Thank you!

MD5    245a0aec54f672b6a6f4d60113330dcd
SHA-1    a8b534893ca620eda67b58c23d96ec1dd595b927
SHA-256    1eaf0fc362e582140b6c8bcf7979b09f28ee4998302f538aa1e0d163c2c0cbca

[Porthos]

29 minutes ago, CGS said:

We have checked our software on virustotal and got false positive detections (Malware.Heuristic.1003).

The attached file is not detected by the consumer or commercial versions of Malwarebytes.

As explained many times before,

The engine format and configuration in VirusTotal is different than the consumer and corporate products’ default configuration. In VirusTotal Malwarebytes uses a command-line engine with different configuration and detection techniques/heuristics which might detect more than the commercial product. There are also false-positive suppression mechanisms in the commercial product which are not present in the command-line engine in VirusTotal.

This will eventually fix itself in Virustotal as well, as Malwarebytes has no control over this.

Edited December 26, 2022 by Porthos

[cli]

Thanks for reporting, I see that it's no longer detected on Virustotal.