Products
Platform
General
Public groups
Several blocking alerts for the file but in the total virus it is pointed out that no vendor has identified it as malicious.
ArchiveFile SHA256 975c0d48c41d2ad76a242d5f7270f4bf8063bb9c753b375ab2c47c9e2060f562
W32.975C0D48C4.RET.SBX.TG downloaded from [http://3.tlu.dl.delivery.mp.microsoft.com/filestreamingservice/files/3d3c4265-57fd-450e-9bda-9fb5f46... 2&P4 =CCfdOMw87SnUCrY0C4p51yKAmawCQUU63HZfjAwB96sNyKdkhkDw8HwhCWRaKw%2bk2Up13ekj1sH6pDEA3mnA%2fQ%3d%3d
fairly sure that it is a false positive. looks to be Microsoft patches for xbox text to speech and mixed reality portal.
I can confirm the issue. Looks like a false positive ... a malicious ZIP file from a Microsoft cdn on a lot of windows clients? doesn't sound plausible
Kind regards
Nick
It was a false positive before.
https://community.meraki.com/t5/Security-SD-WAN/W32-779C90C974-100-SBX-TG-ArchiveFile-Disposition-Ch...
https://community.meraki.com/t5/Meraki-Service-Notices/Security-Center-False-Positive-Alert-April-13...
follow along!
we have this to false positive http://1d.tlu.dl.delivery.mp.microsoft.com/filestreamingservice/files/3d3c4265-57fd-450e-9bda-9fb5f4...]
Microsoft.XboxSpeechToTextOverlay_1.21.13002.0_neutral_~_8wekyb3d8bbwe.AppxBundle
