Jan 22 2021 06:54 AM
Newest version of MSIX Packaging tool is causing Trojan:PowerShell/Mountsi.A!ml detection in Windows Defender
Detection time(UTC time): 1/22/2021 2:37:01 PM Malware file path: amsi:_C:\Program Files\WindowsApps\Microsoft.MsixPackagingTool_1.2020.1219.0_x64__8wekyb3d8bbwe\MsixPackageTool.exe
Remediation action: NoAction
Action status: Succeeded
Jan 23 2021 03:28 AM
It is sad Windows team cannot create a reliable packaging tool and their own applications trigger malware detections in their own antivirus.
Jan 28 2021 11:22 AM
SolutionHi @JeffAre
Thank you for reporting this. The Microsoft Defender team determined this to be a false positive and has updated their security intelligence. The changes will reflect in latest security intelligence version 1.329.2889.0 or above.
This security intelligence update will be available to users who subscribe to the automatic security intelligence update mechanism, as well as users who choose to manually update security intelligence update.
The latest security intelligence update is available for download here: https://www.microsoft.com/en-us/wdsi/definitions
Jan 28 2021 11:22 AM
SolutionHi @JeffAre
Thank you for reporting this. The Microsoft Defender team determined this to be a false positive and has updated their security intelligence. The changes will reflect in latest security intelligence version 1.329.2889.0 or above.
This security intelligence update will be available to users who subscribe to the automatic security intelligence update mechanism, as well as users who choose to manually update security intelligence update.
The latest security intelligence update is available for download here: https://www.microsoft.com/en-us/wdsi/definitions