Forum Discussion
MSIX Packaging tool AV detection
Newest version of MSIX Packaging tool is causing Trojan:PowerShell/Mountsi.A!ml detection in Windows Defender
Detection time(UTC time): 1/22/2021 2:37:01 PM Malware file path: amsi:_C:\Program Files\WindowsApps\Microsoft.MsixPackagingTool_1.2020.1219.0_x64__8wekyb3d8bbwe\MsixPackageTool.exe
Remediation action: NoAction
Action status: Succeeded
Hi JeffAre
Thank you for reporting this. The Microsoft Defender team determined this to be a false positive and has updated their security intelligence. The changes will reflect in latest security intelligence version 1.329.2889.0 or above.
This security intelligence update will be available to users who subscribe to the automatic security intelligence update mechanism, as well as users who choose to manually update security intelligence update.
The latest security intelligence update is available for download here: https://www.microsoft.com/en-us/wdsi/definitions
2 Replies
ChaconMicrosoft
Hi JeffAre
Thank you for reporting this. The Microsoft Defender team determined this to be a false positive and has updated their security intelligence. The changes will reflect in latest security intelligence version 1.329.2889.0 or above.
This security intelligence update will be available to users who subscribe to the automatic security intelligence update mechanism, as well as users who choose to manually update security intelligence update.
The latest security intelligence update is available for download here: https://www.microsoft.com/en-us/wdsi/definitions
It is sad Windows team cannot create a reliable packaging tool and their own applications trigger malware detections in their own antivirus.
