is karma.js malware? #143
Labels
question
Further information is requested
Comments
|
Yes and no... the point is that the documentation shouldn't be part of the distribution, so I'll get that fixed. Then you won't get this triggered on your local machine. The code does some low level browser mining when people use the documentation online - I'm trying this out as a less obtrusive way of generating revenue versus advertising, but it makes so little money that I'll likely just remove it. |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Is this real malware or a false detected?
docs/source/_static/js/karma.js
www.virustotal.com
https://www.virustotal.com/gui/file/d86bccdf80bcc25af3967c678ff6738bb30752371c8c874b1f46fd66db819785/detection
17 security vendors and no sandboxes flagged this file as malicious.
Security Vendors' Analysis
Ad-Aware
JS:Trojan.Cryxos.7406
ALYac
JS:Trojan.Cryxos.7406
Arcabit
JS:Trojan.Cryxos.D1CEE
Avast
Script:SNH-gen [Drp]
AVG
Script:SNH-gen [Drp]
BitDefender
JS:Trojan.Cryxos.7406
Emsisoft
JS:Trojan.Cryxos.7406 (B)
eScan
JS:Trojan.Cryxos.7406
GData
JS:Trojan.Cryxos.7406
Google
Detected
Ikarus
Trojan.JS.Cryxos
Kaspersky
HEUR:Trojan.Script.Miner.gen
MAX
Malware (ai Score=80)
McAfee-GW-Edition
BehavesLike.JS.CoinMiner.cm
Sangfor Engine Zero
Miner.Generic-JS.Save.lifeisall
Trellix (FireEye)
JS:Trojan.Cryxos.7406
VIPRE
JS:Trojan.Cryxos.7406
The text was updated successfully, but these errors were encountered: