I downloaded an installer for an online game on the official site, although it is a private server it has been running for 2 years and have around 400 active players daily so i assume it is safe.
after finishing the download, i always scan the file before opening it but on the installer.exe, particularly on the file named Inno0097.Bin or device.sys it is detected as a Win32:Malware-Gen by avast
the site offer 3 different download links:
- is the whole game packed in a .RAR format (game.RAR) i think i can play it by just extracting them, no need to install.
- is the installer partially packed in a .RAR format (installer.part01, part02, etc)
- is the installer executable for the game (installer.exe)
so i have tried downloading all 3 of them, all of them is detected as a malware gen EXCEPT the partial file, it has 10 partial .RARs and when i scanned them one by one, they are not detected as a virus by avast BUT when i extract them to a folder to be a single installer file (installer.exe) avast then detected it as a malware gen
i have tried scanning the file using malwarebytes too and they are not detected as a threat by them, only avast detect it as a malware gen, is that a false positive? should i put the file on avast exclusion list? i really want to upload the file to virustotal.com to see if they are false positive but too bad the suspected file device.sys is just too big to upload and i can’t open the suspected inno0097.bin because it is inside the installer and i don’t want to risk opening the installer 
any suggestion on what should i do? thanks!