EndpointBasecamp.exe is detected as malicious file by third-party software

- Updated:
- 23 Sep 2021
- Product/Version:
- Apex One All
- Apex One as a Service
- Platform:
- N/A

Summary

Since Apex One as a Service July 2020 maintenance and Apex One On-Premise Patch 3 Build 8358 are released, customers who are using third-party software like Cisco AMP detected a file under Trend Micro Apex One agent program folder as malicious.

Details

The falsely detected file is %PROGRAMFILES(x86)%\Trend Micro\Endpoint Basecamp\EndpointBasecamp.exe.

According to currently reported cases, Cisco AMP detected it by the rules named PE Contains an Invalid Certificate Signature and PE Contains A Suspicious Certificate Signature, as shown in the sample below:

In order to keep Apex One agent working correctly, it is suggested to add this file into the exception list of third-party software.

For more information about Endpoint Basecamp, you can refer to this article.

Rating:

Category:

Troubleshoot

Solution Id:

000260780

Feedback

Did this article help you?

Thank you for your feedback!

What was the problem with this article?

The image(s) in the article did not display properly.

The article did not provide detailed procedure.

The article is hard to understand and follow.

The video did not play properly.

The article did not resolve my issue.

Others. Please specify.

*This form is automated system. General questions, technical, sales, and product-related issues submitted through this form will not be answered.

If you need additional help, you may try to contact the support team. Contact Support

Thanks for voting.

To help us improve the quality of this article, please leave your email here so we can clarify further your feedback, if neccessary:

We will not send you spam or share your email address.

*This form is automated system. General questions, technical, sales, and product-related issues submitted through this form will not be answered.