Nsudo 8.0 - Virustotal Reports Infections In Download File

The NSudo 8.0 zip file posted here on MajorGeeks (https://m.majorgeeks.com/files/details/nsudo.html) apparently has some kind of infection. Both Firefox and Chrome block the file when you attempt to download it. And when I override the block to download it anyway, I can submit the zip file to VirusTotal, and find that they report 19 engines detecting threats in the file -- nearly half of them finding some kind of Trojan.

VirusTotal reports these threats regardless of whether you download NSudo 8.0 from MajorGeeks or from the author's site on GitHub. For comparison, I went back on GitHub and downloaded the previously released version of NSudo, which is version 6.2.1812.31 from December 2018. That earlier 6.2 version on NSudo is squeaky clean; VirusTotal shows no threats at all in version 6.2.

I sent a message to the MajorGeeks reporting address (mgnews@majorgeeks.com); but I've heard nothing back from anyone regarding this apparently infected software. Has anyone else noticed this problem with the new version of NSudo? Is there any way to get someone here at MajorGeeks to look into the issue?

 

[Some background info/comments here]

Tom, have you also called the author @github about this?

 

Thanks for the quick reply. I've always downloaded NSudo from your site; and as noted above the previous version (6.2.1812.31) had no issues. It's only the latest version (8.0) that appears infected, at least based on VirusTotal. Digging into the NSudo zip file shows three files in the download that are triggering the threat alerts. The most concerning of the three is a DLL file named "NSudoDM.dll", which VirusTotal shows has threats detected by 20 different engines, including BitDefender, McAfee, and TrendMicro among the major vendors. And 7 of those 20 threats are listed as Trojans of some sort. I've uploaded a screenshot of the VirusTotal results for that DLL file.

I understand how utilities like NSudo can trigger warnings as potentially unwanted or dangerous programs. But I've also used NSudo for quite a while, and never run into warnings of threats like this before with it -- not until this latest release of version 8.0. And I've never been blocked by Firefox or Chrome from downloading any file from MajorGeeks before. This is the first time ever for me on your site. I'd really appreciate it if someone there could just double-check the latest NSudo download file to ensure that it's not really infected.

 

I haven't done that yet. I was interested in hearing back from someone here at MajorGeeks first. But I may follow up with trying to reach the author later.

 

@Tom-R
To understand why some software are flagged as malicious, read this.
https://www.av-comparatives.org/spotlight-on-security-the-problem-with-false-alarms/

 

I ran several virus and malware software and got no detection.Not even a pup.Safe to say it's clean.