Malware found in /usr/lib/keepass2/KeePass.exe
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
keepass2 (Ubuntu) |
Invalid
|
Undecided
|
Unassigned |
Bug Description
BitDefender for Linux has detected the malware: Gen:Variant.
I tried "apt-get --purge remove keepass2" then "apt-get install keepass2" to get the following:
-------
Selecting previously unselected package keepass2.
(Reading database ... 301930 files and directories currently installed.)
Preparing to unpack .../keepass2_
Unpacking keepass2 (2.32+dfsg-1) ...
dpkg: error processing archive /var/cache/
unable to open '/usr/lib/
Processing triggers for desktop-file-utils (0.22-1ubuntu5) ...
Processing triggers for mime-support (3.59ubuntu1) ...
Processing triggers for shared-mime-info (1.5-2) ...
Unknown media type in type 'all/all'
Unknown media type in type 'all/allfiles'
Processing triggers for hicolor-icon-theme (0.15-0ubuntu1) ...
Processing triggers for man-db (2.7.5-1) ...
Errors were encountered while processing:
/var/cache/
E: Sub-process /usr/bin/dpkg returned an error code (1)
-------
BitDefender then reports it's blocked "/usr/lib/
Extracting the /usr/lib/
Needless to say the potential security implications of KeePass being infected are pretty high, if it's not just a false positive.
Regards,
Tom
From 'hateball' on IRC: /www.virustotal .com/sv/ file/9456ba3236 c05afa7e9d74420 7fe90420315caa7 af4cc77f9f6c415 9fb4fba39/ analysis/ 1468410882/
https:/
Shows that many AV scanners pick it up as infected.