The installer of Brave is detected as a Trojan by Antiy-AVL (mechanism used in VirusTotal)

Browser Support
1

Description of the issue:

eedd1564c2234400da4658782e3064c657bf225a_2_690x171
As seen in the image, the Brave installer is detected as a Trojan by a mechanism built into https://www.virustotal.com/
I consider this can damage the trust with newer users since this protection service is used by many people

How can this issue be reproduced?

1.https://brave.com/download/ Download the browser for windows 64-bit
2.https://www.virustotal.com/ In the file section, click on the “choose file” button and insert the installer.
3.Observe the results

Expected result:
Brave would be marked as clean by ALL antivirus, but that does not happen. To be clear only ONE antivirus / antimalware detects it as a Trojan,

Brave Version( check About Brave):

It’s the installer, I don’t think the Brave version matters. But anyways, it’s the latest stable version

Additional Information:

I consider this to be an error of Antiy-AVL itself, since none of the other remaining antiviruses considerer the installer of Brave as a threat. But well, I don’t expect the developers to do something to fix this, it’s more to keep you up to date on this issue.

2 Likes
2

@Markook,
Thank you for reporting. I’m forwarding this information to our security team to review and resolve. I believe it goes without saying that we are not a Trojan and this issue has sprung up ever so often with different A/V software.

1 Like
3

@Markook,
We’ve reached out to Antiy-AVL to request Brave be whitelisted in their system given that we are not a Trojan.

Again we appreciate you bringing this to our attention.

1 Like
4

@Mattches Of course, it was quite obvious that this was an error of their system itself since no other antivirus detected it (example: high quality antiviruses like Kaspersky or ESET Nod32)

This project has a great future, keep working as you are doing! I wish you guys the best

5

Update:

image
image1330×325 37 KB

I know that it took very little time for this to be solved, but I want to alert that another mechanism began to detect it as dangerous. In this case Jiangmin detected it

@Mattches

1 Like
6

@Markook,
Thanks again for the heads up – I’ll be looking into this today.

1 Like
7

@Mattches Of course. Anyways, in both photos you can see that there is a message in the community section

image
image1062×147 19.4 KB

Clearly the malware (that u can download in that page) comes, for some reason, with the installer and maybe that’s the cause of the detections

Warning:
For anyone who is seeing this message, DO NOT download anything from there. Although clicking on it is not dangerous, malware is uploaded to that website.

“The MalShare Project is a collaborative effort to create a community driven public malware repository that works to build additional tools to benefit the security community at large”
This is found here
For paranoid people who prefer not to click hyperlinks: https://malshare.com/about.php

:eyes:

8

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.