Binary files are detected as malicious

Issue

• A web application uses binary files inside the user's home directory.
• Files are considered malicious by Imunify360.
• The option Binary (ELF) malware detection is enabled in Imunify360 > Settings > General.

Environment

• Imunify360
• Scanner

Solution

To avoid false positives, disable this option in Imunify360 > Settings > General, or, which is more secure, make a special directory for binary files and add it to the ignore list.

Cause

The binary files are detected as malicious by Imunify360 because the option 'Binary (ELF) malware detection' is enabled:

Binary (ELF) malware detection – this option allows to search for any binaries (ELF files) in the user home directories and consider them malicious.

When this option is enabled, Imunify360 scans the home directories and flags all binary files as malware.