re bitcoin core -are coinminer.ext and OSX/Koiot.gen malware or false positives?

[xdbx]

Bitcoin Client Software:  Bitcoin Core
Version Number:  27.0 and 28.0
Operating System: Mac OSX v11.7.10
Problem: i downloaded bitcoin core from https://bitcoin.org/en/download and verified it and my antivirus software has flagged a couple of components (coinminer.ext and OSX/Koiot.gen) as malware and quarantined them. can i safely go ahead and install this bitcoin core? Are these false positives or should i avoid and if the latter where can else I get Bitcoin Core from? I’m in the UK and can only find the .../en download

[LoyceV]

As far as I know, Bitcoin.org is banned in the UK due to a fraudulent lawsuit. I've never used the Mac version, but I don't think there should be anything called "coinminer" in there. Try to download from https://bitcoincore.org/en/download (the link shown under News above this page).

[odolvlobo]

If you downloaded Bitcoin Core from bitcoin.org or bitcoincore.org and followed the directions for authenticating it, then there is a very low chance that it contains malware. Scammers sometimes embed mining software in apps, so antivirus checkers will flag/quarantine legitimate software.

[ranochigo]

You should be verifying your Bitcoin Core installation by comparing the SHA256 hashes with the ones in the SHA256SUM. The SHA256SUM should further be validated using the PGP keys. False positives are pretty common with Bitcoin Core binaries especially those associated with mining malware.

[ABCbits]

As far as I know, Bitcoin.org is banned in the UK due to a fraudulent lawsuit.

Actually only Bitcoin whitepaper not allowed be served to UK visitor, although it's it's outdated news. Some news report that some time after COPA win against faketoshi on court, Bitcoin.org restore whitepaper access to UK visitor.

I've never used the Mac version, but I don't think there should be anything called "coinminer" in there. Try to download from https://bitcoincore.org/en/download (the link shown under News above this page).

Good point. But i wonder whether some antivirus still flag Bitcoin Core as malware or something like that. I remember Wasabi Wallet launched campaign to stop such false positive many years ago.

[Pmalek]

If you are certain that you downloaded the software from the official website and not a fake one that looks similar, it's most probably a false positive. Especially if you verified the installation file successfully. I don't use Bitcoin Core personally, but it doesn't matter.

What antivirus software are you using?
You can also upload the downloaded file to VirusTotal and have it analyzed. Share the results in a new post here if you want.

[logfiles]

So long as you verified the signatures before installing, then the rest is just background noise. So many false positives have been reported in the past and it's the problem of your Antivirus service provider and not the Bitcoin core

This website is good for tracking the virus total results - https://bitcoinissafe.com/

4 days ago 11/56 antivirus vendors flagged the software as malicious, today the number has dropped to 7 - https://www.virustotal.com/gui/file/cb5935484998a74eda6b8caa699be844567b2942de9e723a875debbbc01a53c1 (this the MacOS package). The score is Zero for the other platforms (Linux and Windows)

[bizeodal]

As far as I know, Bitcoin.org is banned in the UK due to a fraudulent lawsuit

The Craig Wright Satoshi identity trial judgment found against Wright in May, 2024. In July, 2024 the judge reversed the 2021 bitcoin.org judgment
https://cdn.arstechnica.net/wp-content/uploads/2024/07/COPA-v-Wright-Approved-FOO-Judgment-16.07.2024.pdf
Scroll down to "What should happen in the COBRA and McCormack claims"