Windows 10 Defender caught a malware in go 1.17

Hodol_CHOE · September 10, 2021, 3:26am

Hi,
I tried to use go 1.17 which has been recently released on my windows 10 laptop.

I installed go 1.17 with .msi installer which I downloaded from https://golang.org/dl/

And I got a malware report from windows 10 defender as the attached screenshot.

I reinstalled the compiler, let windows 10 defender full scan and it caught the malware.

I removed installed go 1.17, I downloaded the go 1.17 .msi again, installed the compiler with new .msi and I tried the full scan again, I got the same result.

I removed the go 1.17 and installed go 1.16 and tried the full scan, the windows defender said “safe”.

I think it might be security issue and I report what I found.

Thank you.

hollowaykeanho · September 10, 2021, 3:38am

Hi @Hodol_CHOE,

Welcome to Golang Bridge.

I believe there was a similar ticket raised in https://github.com/golang/go/issues/47807. The ticket described the incident as false positive as long as you’re downloading from official site and checksum your downloaded package.

system · December 9, 2021, 3:38am

This topic was automatically closed 90 days after the last reply. New replies are no longer allowed.