Program detected as a trojan after 11 years!?

[Nevander]

So about two years and six months ago I got a new computer and essentially that meant I copied all my personal files and things I cared about losing onto an external drive so I could restore them to my new computer.

Along with all of that was a small collection of external tools that you can run alongside Halo: Custom Edition made by BitterBanana. Things like Halo Screen Options.exe, haloCEdev.exe, haloFlycam.exe, and so on.

All of these programs are totally legit and safe, never had a single problem with any of them on my old PC and neither on my new one. I never installed Halo CE again on my new computer so these files were just sitting on my drive until I did install it again. Ever since I've moved these files and had my new PC, I've run full scans with MSE and MalwareBytes regularly. Never had any issues with these files.

Now suddenly out of the blue today, I ran a full scan and much to my surprise it detected one of them (haloThirdFoV.exe) as a "Trojan: Win32/Rundas!plock." This freaked me out so I had to check which file it was, and it turned out to be this tool for Halo CE. It was last modified in 2005 and from then to now it's never been a problem. This page here was published this year, in May, and it's the same trojan thing that I saw.

I thought maybe that file somehow got compromised or infected, so I tested it by plugging my external drive back in and guess what? MSE instantly detected and removed it from the drive! That drive hasn't been touched since 2013! What!

So what the hell is this? False positive? Logic/time bomb malware? I scanned the exe with VirusTotal and it showed as being something like 17/57 as malicious. MSE reported that the program can be used to execute commands of the hacker's choice. The program did used to execute commands for you, but it was directed to the game to change viewpoints and the FOV. I've used it before on my old PC like I said so it worked before as it should, and never appeared to be malicious.

I'm just so confused right now. Anyone have an idea what could cause something like this? I've since removed the exe from both my computer and external drive and ran more scans to be thorough.

[Snarboo]

Probably a false positive? It happens from time to time, even for older files. Try uploading the file to a site like virustotal and see what it says about the file.

[wildweasel]

Most likely a false-positive; if your virus scanners have any heuristics on them, they might have considered the Halo tools to be hazardous since they are intended to hook into another running program.

[BFG]

my computer thinks DOSBOX is a virus and other old game related files, all false positives.