This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(316.8, 35%, 40%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ETA%3C/text%3E%3C/svg%3E)
We have developed the MSI file. While installing the MSI in Japanese OS Windows 10 machine, Windows Defender has detected the "Trojan:Script/Wacatac.B!ml" error in some machines.
But we have tried to reproduce the same in some other [English OS Windows 10 and Japanese OS Windows 10] machines that are working fine. Windows defender did not detect any errors. We need to know the cause of the error.
We have tried to reproduce the same issue again, But it can't be reproduced due to the factors below.
1) Reproduction testing is difficult because OS is updated to Windows 11 version.
2) The recall rate at the time of occurrence is 100%.
3) The environment at the time of occurrence is Windows 10 20 H2.
4) The detailed build and defender pattern file is unknown. (Already up to Windows 11)
We have attached the error occurred screenshots for your reference. Please find the screenshots.
Question:
If any of the above questions are ‘Yes’, Kindly share your opinion to solve this issue.
Note: No third party antivirus was installed on the PC.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(89.60000000000001, 81%, 18%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ERA%3C/text%3E%3C/svg%3E)
Are you concern about it is a safe application but it is being detected as malware?
Or
It is detected as malware but Microsoft Defender is unable to remove it.
@Test Admin
Hi,
Just checking in to see if the information provided was helpful.
If the reply helped you, please remember to accept as answer.
If no, please reply and tell us the current situation in order to provide further help.
@Test Admin
Hi,
We have not get information from you for several days.
If the reply is useful for you, please accept as answer. It will be helpful to other members who have same questions.
If you have any other confuse, please reply to us directly.
@Test Admin
Hi,
For now, you have not encountered similar errors on the latest system, right?
Since this MSI file is developed, you probably did something that Defender found suspicious.
If you are unable to reproduce the problem at this time and you have not encountered an error in other similar systems, then it is likely to be a be a false positive.
One explanation for a false positive is that Microsoft Windows Defender may not have enough information about the file to determine that it is safe.
False positives/negatives can occur with any threat protection solution, including Microsoft Defender
Hope above information can help you.
============================================
If the Answer is helpful, please click "Accept Answer" and upvote it.
Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread