Every new SSH session of SmarTTY seems to create a DLL detected as malware.
Product site: http://smartty.sysprogs.com/
Name of detection: Application.MSIL.Linkury.M@330247795
CIS database number: 8.4.0.5165
Thanks
Hi francescoraimondi,
Thank you for reporting this.
We’ll check it and get back to you soon.
Best regards
Pavithran G
Hi francescoraimondi,
The sample you have mentioned(SmarTTY-2.2.msi(SHA:1158e49189996cbd3ae184022041887c644dbe10))
as false-positive’s is not detected by Comodo Internet Security version <8.4.0.5165> with database version 26204.
Please submit the detected sample to us in the following link so we can check them.
Best regards
Pavithran G
Hi Pavithran,
thanks for the rapid response! I’m sorry, I should’ve been more clear. The problem is not in the software installer itself… it’s a multi-tab SSH connection manager, every time I open a saved SSH session it generates a DLL with a random name in AppData/Temp folder, which gets flagged by CIS as a potentially unwanted application.
I’ve tried to submit a sample, but every time this happens the DLL gets deleted (I don’t know if this is CIS preventing something or just the normal software behaviour…)
Francesco
------------- Update:
Nevermid, I’ve managed to send a sample of the dll. Hope this get fixed somehow 