logo

Knowledge Base

Access official resources from Carbon Black experts

Threat Report: Exposing Malware in Linux-Based Multi-Cloud Environments | Download Now

All Products: [RESOLVED] Potential False Positive for microsoft.todos.systemtrayextension.exe

All Products: [RESOLVED] Potential False Positive for microsoft.todos.systemtrayextension.exe

Environment

  • Carbon Black Cloud: All Versions
  • App Control: All Versions
  • EDR: All Version

Symptoms

[RESOLVED: Reputation Updated]
  • Receiving alerts for potential malware for the file microsoft.todos.systemtrayextension.exe with hash 9fe160bf48ce3b8e052f5d46d44d02bd91cc34f069676650f80d203f5dde19eb or 0d9bb8793516d3389b5a30119e9f8051ea91ba1576724966fa100d6afc5ebb0a
  • CBC Alert may show message: The application svchost.exe -k wsappx -p -s AppXSvc dropped a known virus (Malware: APC) onto the device.

Cause

[RESOLVED: Reputation Updated]
  • Potential false positive under investigation by Carbon Black

Resolution

[RESOLVED: Reputation Updated]
  • Carbon Black has updated the reputation for hash 9fe160bf48ce3b8e052f5d46d44d02bd91cc34f069676650f80d203f5dde19eb and 0d9bb8793516d3389b5a30119e9f8051ea91ba1576724966fa100d6afc5ebb0a. 
  • If the file is deemed trusted, the reputation should be updated on the back-end

Additional Notes

[RESOLVED: Reputation Updated]

Related Content

[RESOLVED: Reputation Updated]

Was this article helpful? Yes No
87% helpful (13/15)
Article Information
Author:
CB_Support
Creation Date:
‎03-27-2022
Views:
5453
Contributors
logo