OPERATIONAL DEFECT DATABASE
...
...
BugZero found this defect 12 days ago.
This issue applies to WatchGuard EPP, EDR, EDR Core, EPDR, and Advanced EPDR. Affects Endpoint Security protection versions v8.00.22.0010 to v8.00.23.0001 (inclusive). Trj/RansomDecoy.A false positive detections with WatchGuard Endpoint Security.
A hotfix is available to resolve this issue. If after you apply the hotfix, you still see Trj/RansomDecoy.A detections, contact WatchGuard Support.To apply the hotfix on the affected endpoint: Download and save the hotfix file to the endpoint:hf-wgua4287-wpdecoy-systemprocess.exeDouble-click the downloaded file. The hotfix does not require a restart of the endpoint. Under some circumstances, you might be prompted to restart for the hotfix to be fully applied. If you cannot restart the computer immediately, select No when prompted. This postpones the application of the hotfix until the next system restart. Note: To install the unattended or silent version of the hotfix, click here. The hotfix is applied after the next system restart. File Details This hotfix updates these files: File NameLocationFile VersionModified DateIncluded in Future VersionsWPDecoy.dllC:\Program Files (x86)\Panda Security\WAC\WPDecoy.dll2.1.0.2214 October 2024Yesv8.00.23.0002 Verify Hotfix Application To verify that the hotfix was successful, check the file version in the File Details section, or verify these values in the Windows Registry: 32-bit Architecture64-bit ArchitectureRegistry KeyValueRegistry KeyValueHKEY_LOCAL_MACHINE\SOFTWARE\Panda Software\Setup\Hotfix history\HF_WPDecoy Revision [REG_DWORD] 8 HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Panda Software\Setup\Hotfix history\HF_WPDecoy Revision [REG_DWORD] 8 HKEY_LOCAL_MACHINE\SOFTWARE\Panda Software\Setup\Hotfix history\HF_WPDecoy Result [REG_DWORD] 0 = Success1 = Not Applied2 = Error9 = On Reboot Operation HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Panda Software\Setup\Hotfix history\HF_WPDecoy Result [REG_DWORD] 0 = Success1 = Not Applied2 = Error9 = On Reboot Operation
