137904 – MalwareBytes (Premium) reports an exploit

Bug 137904 - MalwareBytes (Premium) reports an exploit

Summary: MalwareBytes (Premium) reports an exploit

Status:	RESOLVED NOTOURBUG

Alias:	None

Product:	LibreOffice
Classification:	Unclassified
Component:	LibreOffice (show other bugs)
Version: (earliest affected)	7.0.2.2 release
Hardware:	x86-64 (AMD64) Windows (All)

Importance:	medium normal
Assignee:	Not Assigned

URL:
Whiteboard:
Keywords:

Depends on:
Blocks:

Reported:	2020-11-01 13:48 UTC by Richard George
Modified:	2021-11-01 13:00 UTC (History)
CC List:	1 user (show)

See Also:	145490
Crash report or crash signature:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Richard George 2020-11-01 13:48:44 UTC

Load during Windows startup option now results in the following MalwareBytes report ..

Malwarebytes
www.malwarebytes.com

-Log Details-
Protection Event Date: 01/11/2020
Protection Event Time: 13:39
Log File: a9a6b3ce-1c47-11eb-904e-f0bf97dbc171.json

-Software Information-
Version: 4.2.1.89
Components Version: 1.0.1070
Update Package Version: 1.0.32336
Licence: Premium

-System Information-
OS: Windows 10 (Build 19041.610)
CPU: x64
File System: NTFS
User: System

-Exploit Details-
File: 0
(No malicious items detected)

Exploit: 1
Malware.Exploit.Agent.Generic, C:\...\LibreOffice 7.0.lnk, Blocked, 0, 392684, 0.0.0, , 

-Exploit Data-
Affected Application: LibreOffice
Protection Layer: Application Behavior Protection
Protection Technique: Exploit payload macro process blocked
File Name: C:\...\LibreOffice 7.0.lnk
URL: 



(end)

Comment 1 Buovjaga 2020-11-01 13:54:19 UTC

Please submit it to MalwareBytes as a false positive, so they can fix it.