Macintosh Agent flagged as EICAR virus by ClamAV

[BDeep 7]

We're trying to share the ESET Agent for Macintosh .dmg file and ClamAV (addon AV module in Linux and also for OwnCloud) is popping it as containing the "EICAR" test virus. Who do we raise the issue with?

[MartinK 378]

Could you please provide version and sha1 hash of dmg file you are using? I have tried latest dmg installer on https://www.virustotal.com and nothing was detected, not even by ClamAV.

[BDeep 7]

Clam 0.99.2 of the engine on OwnCloud. Message is "Virus Eicar-Test-Signature is detected in the file. Upload cannot be completed.”

SHA1: 3a48636ada6b92ae1b245af06c59ae9567bcc482

 

https://download.eset.com/com/eset/apps/business/era/agent/latest/agent-macosx-i386.dmg

[MartinK 378]

Your installer is genuine and we are not aware of any similar reports - which indicates it might be false-positive. Eicar should be detected by all antivirus software (even with very outdated databases) and those we tested were negative.

Have you tried it again so that we can exclude temporary problem in cloud providers environment? Are you uploading only this one file? Is there any detailed information regarding infection, i.e. which file inside .dmg is problematic?