Dell Encryption Installer Identified as Potential Threat
Summary: Dell Encryption v10.6 leverages a method of unpacking files that may be potentially malicious within Windows by Microsoft Defender, or other third-party anti-virus applications.
This article applies to
This article does not apply to
This article is not tied to any specific product.
Not all product versions are identified in this article.
Symptoms
Affected Products:
- Dell Encryption
Affected Versions:
- v10.6.0.1
Microsoft Defender or other third-party anti-virus application indicating that nested executables are being identified as potentially malicious, when attempting to install the Dell Encryption DDSSetup for v10.6.0.1. This is preventing the installer from completing.
Here is an example from Microsoft Defender:
Figure 1: (English Only) Threat found - action needed
Cause
Not Applicable
Resolution
The file can be added to the allowlist for, follow best practices for your anti-virus solution. Alternatively, the SHA256 can be allowlisted in the anti-virus application to ensure that only this file is allowed.
Known-good SHA256 hash: D09AE1196C2F78BBE296D850D4F94668697BF07ABBF6CACFB6688E8B37E0B72C
Note: Dell is working to resolve this in a future release.
To contact support, reference Dell Data Security International Support Phone Numbers.
Go to TechDirect to generate a technical support request online.
For additional insights and resources, join the Dell Security Community Forum.
Affected Products
Dell EncryptionArticle Properties
Article Number: 000129449
Article Type: Solution
Last Modified: 03 Apr 2024
Version: 10
Find answers to your questions from other Dell users
Support Services
Check if your device is covered by Support Services.