Devolutions ForumDevolutions Forum

Malware Detected When Upgrading to 2024.3.17.0 (64-bit)

Malware Detected When Upgrading to 2024.3.17.0 (64-bit)

avatar
james_shyhwei

Did anyone encounter any error when attempting to upgrade the Remote Desktop Manager to the latest version?

I'm currently on Windows 11 23H2 (Build 22631.4317) running with Check Point Endpoint Security. My EDR had detected c:\windows\installer\msib042.tmp as a Ransomware attacked under the Void Arachne family.

All Comments (1)

avatar
David Grandolfo

Hello James,

My name is David, and I'm working in the CyberSecurity department at Devolutions. I reviewed the update process of RDM and can confirm that the file name (msib02.tmp) under c:\windows\installer is expected by RDM.

Without the HASH of the file, I cannot confirm that the file is a Devolutions file, but regarding your question, the Check Point alert seems to be a false positive.

If you have any security questions or concerns, feel free to contact us at security@devolutions.net

Best regards,

David Grandolfo