Julia.exe (portable 64 bit nightly and 1.6 rc) are infected?

Tried couple downloads and running the julia.exe (1.6.0 rc and nightly - portable 64 bit versions) downloaded from julialang.org. Each time, the Symantec on my system (Win10) caught it with SONAR.Dropper (Trojan?). Please check. Thanks.

julia.exe_dropper

does the checksum of the downloaded file match?

https://www.virustotal.com/gui/url/1b5a2721bae2f7c517aaf20a9646a3312c80c3e9b31ba0e2da9f8da8bdadf1d5/detection

nothing suspicious; also tried manual upload, still all clear.

The checksum don’t match.
From official record…
0789843a075ed1208f22f30903490c1f julia-1.6.0-rc1-win64.zip
From my Win10 certutil …

certutil -hashfile julia-1.6.0-rc1-win64.zip
SHA1 hash of julia-1.6.0-rc1-win64.zip:
3f50117382942444695fe1c515a6976ca5fa3dee
CertUtil: -hashfile command completed successfully.

I can confirm these results for the portable Windows 64-bit Julia, 1.6 release candidate 1. But the Windows Defender found no threats at all.

Actually, you forgot one argument, and it did not check MD5. Try it like this:

$ certutil -hashfile julia-1.6.0-rc1-win64.zip MD5
MD5 hash of julia-1.6.0-rc1-win64.zip:
0789843a075ed1208f22f30903490c1f
CertUtil: -hashfile command completed successfully.

Thanks @PetrKryslUCSD for the correction. Re-generated correct MD5.

MD5 hash of julia-1.6.0-rc1-win64.zip:
0789843a075ed1208f22f30903490c1f
CertUtil: -hashfile command completed successfully.

Unpacked the zip, → run julia.exe, → error (Trojan) above appeared. Thanks @PetrKryslUCSD for confirming my observation. Observed this error for few weeks already.

I think he didn’t confirm your observation…

can confirm these results

was likely referring to your checksum which you both forgot the md5 flag.

I think in this case your anti-virus software is being dumb since virustotal reported nothing.

2 Likes

But my AV did not detect any threat!

Tried Firefox and Edge to download on WIn10 → all suffer this problem. However, portable win32 has no problem. Then, downloaded (portable 64 bit) using my Android phone, transferred to my Win10. It ran without problem! My Win10 and Android are connect to same router. Seems like a user problem.

1 Like