I found a software that acts like a snapshot enhancer/editor and I'm intrigued, but my Windows antivirus is flagging it as a virus – it even showed up as potentially malicious on VirusTotal and detected a trojan on Hybrid Analysis. Since I'm not very familiar with these types of applications, I'm wondering if anyone could run it through a virtual machine to see if it's safe or if they encounter any issues. I've included links to Hybrid Analysis for more details, VirusTotal results, images of the software, and the download page. I appreciate any help you can give! Better safe than sorry!
3 Answers
It’s likely getting flagged because it’s from an indie developer and not a well-known name yet. Small apps often trigger SmartScreen and Defender warnings. Just make sure to download it from the official site and check the file for authenticity before trusting it.
I installed it on my Windows 11 and didn't get any alerts from Windows Defender at all. Just to be safe, I didn't connect it to the internet though.
Glad to help! You can restrict internet access through your firewall settings or use a program like NetLimiter to control app access.
You might want to check out Tria.ge; they allow you to set up web-based virtual machines. You can install the software there and get a comprehensive report on its activity once you’re done. As for the VirusTotal flag, one flag isn't usually a deal-breaker—many times it can be a false positive coming from less reputable antivirus signatures. Good to exercise caution though!
I’ll try that, thanks for the tip!
I agree that a couple of flags from less-known AVs don’t usually mean it’s harmful. I tolerate a bit of risk too but always stick with reputable sources.
Should I do the same? What’s the best way to restrict internet access for this app?