AV False Positive - HTML Executable 2021 Beta 2

Windows Defender for Windows 10 is identifying HeBuild.exe as “Exploit:Win32/ShellCode!ml” and moving the executable to the quarantine folder.

Looks like a false positive. No Microsoft detection here:

It’s also not occurring on our machines with Windows Defender too. Try to check your computer just in case of.

I placed HeBuild.exe in the exclusion list. And, that took care of it.


1 Like