trparky

False Positive: Android SDK AVD Manager.exe

6 posts in this topic

I had MalwareBytes pop up an alert about AVD Manager.exe from the Android SDK.

I checked VirusTotal for the MD5 signature of 43EFBE2A0EC17D683EED2FB9884F1F6F and according to these results, I have to say that it can't be a threat.

Share this post


Link to post
Share on other sites

Crap... I don't think it attached the file in question.

AVD Manager.zip

Share this post


Link to post
Share on other sites

Hi,

Thanks for reporting this. This is indeed a false positive and will be fixed in next update.

Share this post


Link to post
Share on other sites

There is a second SDK Manager.exe file on my computer, that file's MD5 is D8CA27D7648276F40A7663145480E45C.

SDK Manager.zip

Share this post


Link to post
Share on other sites

Malwarebytes Anti-Malware (PRO) 1.61.0.1400

www.malwarebytes.org

Database version: v2012.04.30.05

Windows 7 Service Pack 1 x64 NTFS

Internet Explorer 9.0.8112.16421

Tom :: TOMSDESKTOPI7 [administrator]

Protection: Enabled

4/30/2012 12:19:20 PM

mbam-log-2012-04-30 (12-58-53).txt

Scan type: Quick scan

Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM

Scan options disabled: P2P

Objects scanned: 289611

Time elapsed: 1 minute(s), 51 second(s)

Memory Processes Detected: 0

(No malicious items detected)

Memory Modules Detected: 0

(No malicious items detected)

Registry Keys Detected: 0

(No malicious items detected)

Registry Values Detected: 0

(No malicious items detected)

Registry Data Items Detected: 0

(No malicious items detected)

Folders Detected: 0

(No malicious items detected)

Files Detected: 1

C:\Users\Tom\AppData\Local\Temp\temp-android-tool\lib\SDK Manager.exe (Backdoor.Agent.DGen) -> No action taken. [0cf1aefd47156dc99ea15f425da34fb1]

(end)

Share this post


Link to post
Share on other sites

Hi,

The second file is also detected with the same generic detection as the first one, so has been fixed in latest update (which has been pushed out a few minutes ago) :)

Share this post


Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!


Register a new account

Sign in

Already have an account? Sign in here.


Sign In Now

  • Recently Browsing   0 members

    No registered users viewing this page.