RE: Windows defender has, once again, incorrectly identified my program as malware!
February 20, 2024 at 8:46 pm
(February 20, 2024 at 9:48 am)FlatAssembler Wrote: Yesterday, I ported my solution of the N Queens Puzzle from the WebAssembly dialect of AEC (which I wrote back in 2021) to the x86 dialect of AEC. And Windows Defender complains that the executable is malware known as "Program:Win32/Wacapew.C!ml". That's implausible, as Wacapew.C!ml is a Trojan, and not a virus which can infect other executable files.
This is not the first that has happened to me. Back in 2020, Windows Defender claimed that my "100 Bottles of Beer" program written in x86 dialect of AEC is a Trojan and that my Polar Rose program is a PUS. I submitted those files to Microsoft, and they agreed with me that it is a false positive.
I must admit I don't understand how that's even possible. I'd understand if my compiler gets misidentified as a virus, as some viruses (especially on Linux) output assembly code and invoke assemblers, and my compiler also outputs assembly and invokes assemblers. I understand that encryption software sometimes gets misidentified as ransomware, as ransomware also do encryption. But I don't understand how can such simple software that essentially does nothing get misidentified as malware. How do antivirus programs even work? What do they look for so that small example programs written in my programming language look suspicious to them?
And why aren't the producers of antivirus software held liable for the damage their software causes via false positives?
Ima just leave this here:
![[Image: linux-retro-vintage-geek-style-hacking-posters.jpg]](https://ctl.s6img.com/society6/img/N3BVSupuI64mkXEzSEs1LX9RhHY/w_700/posters/top/~artwork,fw_2718,fh_3618,fx_-149,iw_3015,ih_3618/s6-original-art-uploads/society6/uploads/misc/5e14ca13f9bf472dab685b8ff66b52d8/~~/linux-retro-vintage-geek-style-hacking-posters.jpg)
Thief and assassin for hire. Member in good standing of the Rogues Guild.
