0006937: Found on antivirus scan, Windows 10 Pro 20H2 OS build 19042.685

ID	Project	Category	View Status	Date Submitted	Last Update

0006937	Kali Linux	Kali Package Bug	public	2020-12-20 11:27	2021-06-23 19:43

Reporter	ianf	Assigned To	steev
Priority	normal	Severity	minor	Reproducibility	have not tried
Status	closed	Resolution	no change required
Product Version	2020.4

Summary	0006937: Found on antivirus scan, Windows 10 Pro 20H2 OS build 19042.685
Description	Detected: Trojan:PHP/RevWebshell.YA!MTB Date: 20/12/20 22:07 Details: This program is dangerous and executes commands from an attacker. containerfile: D:\Downloads\kali-linux-2020.4-installer-amd64.iso file: D:\Downloads\kali-linux-2020.4-installer-amd64.iso->pool\main\b\beef-xss\beef-xss_0.5.0.0+git20191218-0kali2_all.deb->data.tar.xz->(xz)->./usr/share/beef-xss/modules/exploits/m0n0wall/php-reverse-shell.php
Additional Information	Is this a real threat, or Windows Defender enthusiasm?

Date Modified	Username	Field	Change
2020-12-20 11:27	ianf	New Issue
2021-02-21 17:46	g0tmi1k	View Status	private => public
2021-06-23 19:43	steev	Assigned To	=> steev
2021-06-23 19:43	steev	Status	new => closed
2021-06-23 19:43	steev	Resolution	open => no change required
2021-06-23 19:43	steev	Note Added: 0014791

steev 2021-06-23 19:43 manager ~0014791	Various packages and tools in kali can be used to root devices, or have various shell code that antivirus and rootkit detectors find. This is expected due to the nature of Kali. You can ignore them, or add exceptions, there is nothing we can do on our end as these are correct.