Hi,
I’d like to report an issue detected by Windows Defender on Windows 11.
A few days after downloading legacy-notepad-x86.exe, Windows Defender flagged the file as Trojan:Win32/Wacatac.H!ml. The detection occurred immediately after downloading the file, without ever executing it.
This issue does not occur with legacy-notepad-x64.exe, which is not flagged by Windows Defender.
I verified the integrity of the file and confirmed that the SHA-256 hash matches the hash published in the release.
Maybe it could be a false positive, but I wanted to report it for visibility.
I’ve attached screenshots from Windows Defender and VirusTotal for reference.
Thanks for your work, and please let me know if you need any additional information.
