Any anti-debug and anti-reverse-engineering tricks are source of a false positives for heruistic scanners that has the purpose to guess a virus from an unknown example of a software. It's a tricky to fight with them. There are next methods:Dor_78 wrote:Ok, but why?
- Do write reports to antivirus vendors with giving the file and explaining the false positive. They will do a check on their end and will confirm, is this a false positive or a real virus.
- Do use the code-signing, it's usually hard to get and paid, costs expensively, and requires to pass the complex buerocratic process to get the ability to code-sign.