Jump to content

Java jdk-19 [javaw.exe]


EricZ
 Share

Recommended Posts

Hello,

There could be a negative false detection on Java v. jdk-19.

On VirusTotal there are a few detected, but not on Malwarebytes. I have attached the file. Could you please verify it? Thank you!

image.png.6902176c78f9be3e1560d7be56c46c89.png

Malwarebytes
www.malwarebytes.com

-Log Details-
Scan Date: 1/9/23
Scan Time: 3:09 PM
Log File: d31c82f4-901e-11ed-b2ac-e884a5cc9af6.json

-Software Information-
Version: 4.5.19.229
Components Version: 1.0.1860
Update Package Version: 1.0.64438
License: Premium

-System Information-
OS: Windows 10 (Build 19045.2364)
CPU: x64
File System: NTFS
User: System

-Scan Summary-
Scan Type: Threat Scan
Scan Initiated By: Scheduler
Result: Completed
Objects Scanned: 392756
Threats Detected: 1
Threats Quarantined: 0
Time Elapsed: 16 min, 37 sec

-Scan Options-
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Detect
PUM: Detect

-Scan Details-
Process: 0
(No malicious items detected)

Module: 0
(No malicious items detected)

Registry Key: 0
(No malicious items detected)

Registry Value: 0
(No malicious items detected)

Registry Data: 0
(No malicious items detected)

Data Stream: 0
(No malicious items detected)

Folder: 0
(No malicious items detected)

File: 1
Trojan.Agent, C:\USERS\INFO\APPDATA\ROAMING\MICROSOFT\WINDOWS\START MENU\PROGRAMS\STARTUP\javaw.jar, No Action By User, 476, 202821, 1.0.64438, , ame, , 75E3093A4E321AFDB646C0A65DC2942E, 1FDFAD3A8B0990082BC38E914B58BABBCC7CBCE5F53452F49F9A504B74580076

Physical Sector: 0
(No malicious items detected)

WMI: 0
(No malicious items detected)


(end)

 

Javaw.zip

Link to post
Share on other sites

Malwarebytes
www.malwarebytes.com

-Log Details-
Protection Event Date: 1/9/23
Protection Event Time: 9:00 PM
Log File: f2c72a9c-904f-11ed-892d-e884a5cc9af6.json

-Software Information-
Version: 4.5.19.229
Components Version: 1.0.1860
Update Package Version: 1.0.64446
License: Premium

-System Information-
OS: Windows 10 (Build 19045.2364)
CPU: x64
File System: NTFS
User: System

-Blocked Website Details-
Malicious Website: 1
, C:\Program Files\Java\jdk-19\bin\javaw.exe, Blocked, -1, -1, 0.0.0, , 

-Website Data-
Category: Malware
Domain: 
IP Address: 
Port: 80
Type: Outbound
File: C:\Program Files\Java\jdk-19\bin\javaw.exe



(end)

 

1 hour ago, EricZ said:
Version: 4.5.19.229
Components Version: 1.0.1860
Update Package Version: 1.0.64438

Updated to:

Version: 4.5.19.229
Components Version: 1.0.1860
Update Package Version: 1.0.64446

--

Still receiving detection.

Link to post
Share on other sites

  • Staff

Their is no website domain name present, so its hard to unblock (even impossible)
Is it downloaded from a legit website ?

 

Edited by Emphyrio
Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
 Share

  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.