Hello all.

I recently downloaded firefox from the official site as per usual (windows version) and I ran a virustotal check and got a trojan positive.

The md5sum is: 4409905bd4544c6f45e4d5737f130d75

The sha256sum is:

d390bfce3fed1be8c153aebfb9f28043981071b5338745e9207547178f32bf64

Please verify if this file is legitamate.

6 points
*

I’ve been using computers for 30 years and never once has an antivirus program been helpful or accurate. But yeah, I don’t download and click on random stuff from the web.

permalink
report
reply
2 points

Crowdstrike managed to create a lot of free time for some workers

permalink
report
parent
reply
5 points

I got it from the official website.

https://www.mozilla.org/en-US/firefox/download/thanks

permalink
report
parent
reply
9 points

I think it’s a false positive.

permalink
report
parent
reply
0 points

Maybe try installing trough a package manager like Winget or Chocolatey

permalink
report
reply
24 points

It’s signed by Mozilla (extremely unlikely that’s a virus unless they got hacked) and it’s detected as trojan only by “max secure”, a questionable snake oil product that is like a broken clock, correct only twice a day

Conclusion: it’s safe

permalink
report
reply
3 points
4 points

I have read on the firefox forum that this particular anti-malware engine flags these like that. I just want to know to be sure. Is there somewhere where I can check if it was officially generated by firefox (other than the signature which seems legit)

permalink
report
parent
reply
6 points

Follow up:

Ok so aparently 7z compression is the culprit. If I extract the file. There is a setup-stub.exe file that shows clear in there.

permalink
report
parent
reply

Firefox

!firefox@lemmy.ml

Create post

A place to discuss the news and latest developments on the open-source browser Firefox

Community stats

  • 1.9K

    Monthly active users

  • 887

    Posts

  • 17K

    Comments

Community moderators