Kaspersky evaluate Podman Desktop as a trojan
See original GitHub issueBug description
I’m no really sure if this issue fits here, but as soon as podman desktop updates to 0.9.0 my Antivirus is removing all files.
I will include in the exception list, but maybe there’s something that can be done to avoid this?
Operating system
Windows 11
Version
0.9.0
Steps to reproduce
Try to install podman desktop 0.9.0 or update from a previous version in a system with Kaspersky Antivirus.
Relevant log output
Free Transalation of the report:
Event: Malicious Object Detected
Application: Podman Desktop.exe
User: <removed>
Component: Sytem Inspector
Description Result: Detected
Type: Trojan
Name: PDM:Trojan.Win32.Generic
Threat Level: High
Object Type: Proccess
Object Path.: <removed>\appdata\local\temp\2gzjjh264u5welickp02iomkk1k
Object Name: podman desktop.exe
Reason: Database
Database version date: Yesterday, 10/25/2022 12:07:00
Original Report in Portuguese:
Evento: Objeto malicioso detectado
Aplicativo: Podman Desktop.exe
Usuário: <removed>
Tipo de usuário: Usuário ativo
Componente: Inspetor do Sistema
Resultado da descrição: Detectado
Tipo: Trojan
Nome: PDM:Trojan.Win32.Generic
Nível de ameaça: Alto
Tipo de objeto: Processo
Caminho do objeto.: <removed>\appdata\local\temp\2gzjjh264u5welickp02iomkk1k
Nome do objeto: podman desktop.exe
Motivo: Bancos de dados
Data da versão dos bancos de dados: Ontem, 25/10/2022 12:07:00
Additional context
No response
Issue Analytics
- State:
- Created a year ago
- Reactions:1
- Comments:13 (1 by maintainers)
Top Results From Across the Web
Issues · containers/podman-desktop - GitHub
Podman Desktop - A graphical tool for developing on containers and Kubernetes - Issues · containers/podman-desktop.
Read more >Kaspersky detecting Trojan.Win32.Ebowla.bn in docker.exe
I'm looking at the Ebowla go code to see if there is a reason for docker to generate a false positive, not posting...
Read more >Kaspersky Lab discovers Podec: the first Trojan to trick ...
Kaspersky Lab researchers have discovered a new variant of the SynAck ransomware Trojan using the Doppelgänging technique to bypass anti-virus ...
Read more >Podman expands to the Desktop - Red Hat Developer
Podman Desktop allows developers to install, configure, and keep their container engine (Podman) up to date with a GUI. This convenient GUI ...
Read more >Install Podman Desktop - Oracle Help Center
Verify basic Podman Desktop functionality works. What Do You Need? A client system with Oracle Linux and the “Server with GUI' group installed ......
Read more >Top Related Medium Post
No results found
Top Related StackOverflow Question
No results found
Troubleshoot Live Code
Lightrun enables developers to add logs, metrics and snapshots to live code - no restarts or redeploys required.
Start FreeTop Related Reddit Thread
Top Related Hackernoon Post
No results found
Top Related Tweet
No results found
Top Related Dev.to Post
No results found
Top Related Hashnode Post
No results found
Top GitHub Comments
@FilipJirsak I’ve gone ahead and submitted a report to kaspersky with regards to the false positive. I recommend following through these steps: https://forum.kaspersky.com/topic/kaspersky-how-to-report-false-positive-22328/ and try submitting it as well.
I’ll update this issue if I get a reply back from Kaspersky!
I’ll try it.