Skip to main content

Indie game storeFree gamesFun gamesHorror games
Game developmentAssetsComics
SalesBundles
Jobs
TagsGame Engines

cel7

A tiny grid-based game framework · By rxi

Possible Windows Defender false positive?

A topic by V360 created Jul 13, 2020 Views: 493 Replies: 6
This topic is archived. It is unlisted and no new posts can be made.
Viewing posts 1 to 6

When I tried to download cel7, Firefox blocked the download as an “untrustworthy” file. I clicked allow, and when it finished downloading Windows Defender started complaining about it. Here’s the report it gave me after it removed cel7.exe.

Threat Detected: Trojan:Win32/Wacatac.C!ml
Alert Level: Severe
Date: 7/13/2020 5:53 PM
Category: Trojan
Details: This program is dangerous and executes commands from an attacker.

And it seems VirusTotal detected it too: https://www.virustotal.com/gui/file/ebac4996dc5b09042d13c05a02d21f5a99b1b33a5ad7c870e9f7708838c27d9d/detection

Developer (1 edit)

Thanks for letting me know -- this is likely due to the means used to reduce the file size. I've updated the Windows version, hopefully this fixes the issue!

Deleted 1 year ago

I'm seeing the same warning from Windows Defender about "Trojan:Win32/Wacatac.C!ml" with the updated build (as of 2020-07-14)

Developer

I've uploaded a new version which, at the cost of file size, doesn't use UPX -- I assume this was causing the false positives.  Let me know if this fixes the issue!

(+1)

It works now! Thanks! Windows Defender didn't complain at all this time - only the expected Google Chrome warning about this file being rarely downloaded.

This is super fun to play with. Thanks so much! Totally worth $7 and more :)

I downloaded the latest build about 3 hours ago. I don't get a Windows Defender threat detected when I scan but I did initially get a warning from Firefox when I downloaded the file and a warning from (I think) Windows Defender when I first ran the exe. I can't replicate now, presumably because I told Windows Defender to not worry about it.

Developer

In contrast to OP's issue these sound like the standard messages you would get when trying to download any executable -- my assumption is downloading another game from itch would result in the same warnings, assuming the game was very new or otherwise infrequently downloaded.

Developer archived this topic