Jump to content

Malware.Heuristic.1003 Potential False Positive from Business Software

Damian-D

By Damian-D
in File Detections

 Share

Recommended Posts

Damian-D

Damian-D

Posted
Posted

Hi, I have set of files from a business systems application that came up as Malware.Heuristic.1003 flag (I did have experimental system algorithms on, it no longer came up after turning them off), wondering if they are false positives. Out of the 9 threats, I removed one as it seemed unrelated to the potential false positives and looks like a legitimate trojan. I ran the remaining 6 files (2 registry values I do not know how to include) through virus total and they got 9/64 hits which is why I remained worried, link below. I have attached the the log and zip. Thank you for any help.

Virus Total Link: https://www.virustotal.com/gui/file/25c48d9a177d7a21b9c277cf1789eb4c2a96f40e0266c40bac44068d7cdfab3e/details

Malware Detection 230130 1707 - 9 Threats (1 removed, 2 are reg values) .txt Positive Files.zip

Link to post
Share on other sites
Porthos

Porthos

Posted
Posted

For staff.

https://www.virustotal.com/gui/file/f19a236571c55274a2980aaf131df8e27d81813db66d42abb8e3bbfae48c0de4?nocache=1

https://www.virustotal.com/gui/file/8e29ca6c00749314aa65c0f50a5c3a67bb7ae6bbb88a2a6735149561e1a3860e?nocache=1

File: 2

Malware.Heuristic.1003, C:\MALWARE TEST NO WD\POSITIVE FILES\POSITIVE FILES\GLX.EXE, No Action By User, 1000001, 0, 1.0.65165, 0000000000000000000003EB, dds, 02148456, 8B56C8511D5674037626157E199F7A30, F19A236571C55274A2980AAF131DF8E27D81813DB66D42ABB8E3BBFAE48C0DE4
Malware.Heuristic.1003, C:\MALWARE TEST NO WD\POSITIVE FILES\POSITIVE FILES\ISX.EXE, No Action By User, 1000001, 0, 1.0.65165, 0000000000000000000003EB, dds, 02148456, 74C2B16AED5951B7C97F90E6AAFCDB92, 8E29CA6C00749314AA65C0F50A5C3A67BB7AE6BBB88A2A6735149561E1A3860E

 

Link to post
Share on other sites
Damian-D

Damian-D

Posted
  • Author
Posted

Hi,

 

Integrated Systems developed by a programmer in my country (Indonesia), it also has an accounting portion of the software (the GLX bit). As far as I can tell it a is well established business software started over 20 years or something.

So is it false positive or actually harmful?

 

Thanks!

Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
 Share
Go to topic listing

  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.