Hello,
I recently loaded N.I. CDAQ 9.7.5 on a Lenovo W541, 64 bit, Win 7 Enterprise Laptop. Our IT dept. has pushed down FireAmp to scan our drives and below in red is what came back.
- Detection:573FD49A5B-100.SBX.VIOC
- File:exe
- File path: \\?\C:\Program Files (x86)\National Instruments\RT Images\Base\6.1.1\7115\ph_exec.exe
- Detection SHA-256: 573fd49a5b20463b342b22a184ef60423482943d190840b1c27e9b938680c81b
- By Application:exe
- Application SHA-256: 82ef3b124362b701ac146fffe8c6d2f5a932417bd7011a887665df6f09797a60
Our IT wants to know if this is free from malware and is the .exe needed? Anything you can tell me about the .exe and its operation would be helpful.
Also noted by our IT: that application is being flagged by some of the AV vendors as malicious (see Virus Total report below). Our Threat Analysis says it is suspicious but the risk score is fairly low (see below). If it is critical to keep around we would want to get some assurance from the vendor that it does not include malicious code.
See the attached file.
Thank you.
Regards,
Hugh