Why have multiple online virus scanners flagged my sysinternals zip file as dangerous?

David Porter 0 Reputation points
2023-04-02T19:26:55.6733333+00:00

i downloaded sysinternals from https://learn.microsoft.com/en-us/sysinternals/downloads/ and all 3 online virus scanners that I've always used flagged the zip file as dangerous.

virus total

metadefender

jottis

all 3 flagged the file as a trojan or trojan installer.

i just want to make sure that I have downloaded the file from the correct place and that the file is actually safe to unpack and run.

md5: d97a809873394418e26530e09bc29b13

Sysinternals
Sysinternals
Advanced system utilities to manage, troubleshoot, and diagnose Windows and Linux systems and applications.
1,099 questions
0 comments No comments
{count} votes

1 answer

Sort by: Most helpful
  1. Jay Asbury 0 Reputation points
    2023-07-30T14:11:06.7666667+00:00

    https://www.virustotal.com/gui/file/1a07dc0f192efcccbf5dce3294254d04d7c7f9a94752ee07d63606606ef9ebbf/behavior

    Because bad actors have included sysinternals tools in their malware so the tools are being flagged. However, it is the old hammer argument. I can use a hammer to do good things like put nails in. I can also use it to hit someone. Is the hammer bad?

    0 comments No comments