This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences

VirusTotal reports false positive for open source Python software (Generic.ml)

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
Please sign in to see details of an important advisory in our Customer Advisories area.

VirusTotal reports false positive for open source Python software (Generic.ml)

Syncplay
L0 Member

‎04-05-2023 09:37 AM - edited ‎04-05-2023 12:05 PM

Hi all,

 

VirusTotal states that Palo Alto Networks is flagging Syncplay v.1.70 as Generic.ml, which is a false positive.

 

Syncplay a free Python-based open source media synchronisation tool built using GitHub Actions. GitHub release:

 

I've uploaded the exectable as a .zip with the password infected, but you can also access it via the GirtHub release page at https://github.com/Syncplay/syncplay/releases/tag/v1.7.0 and more specifically https://github.com/Syncplay/syncplay/releases/download/v1.7.0/Syncplay-1.7.0-Setup.exe

 

Anything you can do to resolve this would be greatly appreciated.

 

Regards,
-Etoh
Lead Syncplay Developer

Syncplay-1.7.0-Setup-FalsePositive.zip
0 Likes Likes
3 REPLIES 3

DaBone
L4 Transporter

‎04-05-2023 11:37 AM

please provide the information and in the format requested in this pinned post:
https://live.paloaltonetworks.com/t5/virustotal/virustotal-verdict-change-request-for-false-positive...

0 Likes Likes

Syncplay
L0 Member

‎04-05-2023 12:04 PM - edited ‎04-05-2023 12:14 PM

File Hash: 0afb93a1baed3d9b90580b297a7f94ec46183463dda9171b1434c76141e0620c

Link to Virustotal report for the file: https://www.virustotal.com/gui/file/0afb93a1baed3d9b90580b297a7f94ec46183463dda9171b1434c76141e0620c...

Current VirustTotal Verdict: trojan / MALICIOUS

Description: This is a false positive. Syncplay is a free open source media synchronisation tool which has been publicly available since 2013, and is now at version 1.7.0. The Windows executables are generated from the Python source code using GitHub Actions. Lumo, Fortinet and Avast have already confirmed that their detections were false positives and I am waiting on the rest to respond.

0 Likes Likes

tsullivan7
L4 Transporter
In response to Syncplay

‎04-05-2023 02:58 PM

Under review

0 Likes Likes
  • 1646 Views
  • 3 replies
  • 0 Likes
Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!

The LIVEcommunity thanks you for your participation!

LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2024 - Palo Alto Networks