Ping a Specific Port

Question

Benjol

Asked: 2021-06-25 21:45:12 +0800 CST2021-06-25 21:45:12 +0800 CST 2021-06-25 21:45:12 +0800 CST

My six year-old WPF executable is suddenly being detected as MSIL/AgentTesla.FU!MTB by Windows Defender

772

I wrote this app years ago, for my own personal use, never published it anywhere.

I wondered if a virus might have been able to infect it, but even restoring the exe from six years ago doesn't solve the problem.

I haven't managed to find anything useful on how this trojan is detected, which might enable me to change whatever it is in my code that provokes this.

(I'm also not sure whether this is the right place to ask the question)

1 Answers

Voted

John Mahowald · Answer 1 · 2021-06-26T13:00:50+08:00

John Mahowald

2021-06-26T13:00:50+08:002021-06-26T13:00:50+08:00

Get a second opinion by scanning it with other engines, such as with VirusTotal.

Upload it for analysis by Microsoft security intelligence. Microsoft has an interest in keeping you both as a developer and Windows user.

This specific variant was cataloged by Microsoft in January 2021. AgentTesla is a remote access trojan that has evolved, so unfortunately it seems your thing got flagged as a false positive in a recent detection update.

1

My six year-old WPF executable is suddenly being detected as MSIL/AgentTesla.FU!MTB by Windows Defender

Can you pass user/pass for HTTP Basic Authentication in URL parameters?

Ping a Specific Port

Check if port is open or closed on a Linux server?

How to automate SSH login with password?

How do I tell Git for Windows where to find my private RSA key?

What's the default superuser username/password for postgres after a new install?

What port does SFTP use?

Command line to list users in a Windows Active Directory group?

What is a Pem file and how does it differ from other OpenSSL Generated Key File Formats?

How to determine if a bash variable is empty?