https://www.autohotkey.com/ “website”
https://www.virustotal.com/gui/file/32e551b5638f905c976e1ae563597cbd53788660387b970bf77842dbb0d8fd36/detection “scan results”

went to download this program but when I scanned it virustotal had 2 engines that mark it as malware/trojan, I thought maybe it was just some false positives but there was a comment in the community tab saying:

“idk safe or unsafe but trojan inside”

this confused me on if its safe or not so to settle this could someone tell me if it really is something to worry about?

No one can really give a definitive answer unless they had downloaded the AutoHotkey_1.1.33.00_setup.exe program file.

That figure has dropped to only 1 engine detecting it now, you also have to consider just what AV did the detecting, never heard of this on from Vietnam. As for the comment is somewhat vague “idk safe or unsafe but trojan inside”. My interpretation of that comment “I Don’t Know if safe or unsafe, but trojan inside.” If there was a trojan inside, then surely that would have been detected by many more of the 71 engines.

https://en.wikipedia.org/wiki/AutoHotkey
A tool like this could also be used for malicious purposes by someone, which doesn’t necessarily mean it is a trojan.

Hi sebastian348,

I agree with DavidR, but there are some points to consider here. Just one engine to flag at VT could be a sign that the detection could be a false positive. The more engines to flag the more likely it is a genuine detection.

On the other hand, let us see where this download is being hosted and the vulnerabilities found there.
Retirable code on the download page:

bootstrap 3.3.4 Found in -https://www.autohotkey.com/assets/bootstrap/js/bootstrap.min.js
Vulnerability info:
High 28236 XSS in data-template, data-content and data-title properties of tooltip/popover CVE-2019-8331
Medium 20184 XSS in data-target property of scrollspy CVE-2018-14041
Medium 20184 XSS in collapse data-parent attribute CVE-2018-14040
Medium 20184 XSS in data-container property of tooltip CVE-2018-14042
jquery 1.11.2 Found in -https://www.autohotkey.com/assets/jquery/jquery.min.js
Vulnerability info:
Medium 2432 3rd party CORS request may execute CVE-2015-9251
Medium CVE-2015-9251 11974 parseHTML() executes scripts in event handlers
Low CVE-2019-11358 jQuery before 3.4.0, as used in Drupal, Backdrop CMS, and other products, mishandles jQuery.extend(true, {}, …) because of Object.prototype pollution 123
Medium Regex in its jQuery.htmlPrefilter sometimes may introduce XSS

Avast qualifies this site as “may be untrustworthy”, see the autokey dot com scamsite that is for sale.
2 tracking scripts are being blocked.
CloudFlare → -https://www.autohotkey.com/cdn-cgi/apps/head/21XiSFXBdVHXl7A_izEkLSn9ayc.js

Flagged because of https://fonts.googleapis.com/css?family=Roboto:700,400&subset=cyrillic,latin,greek,[b]vietnamese[/b]

polonus (volunteer 3rd party cold recon website-security analyst and website error-hunter)

thank you for all the information, I think I may just avoid the download as I just needed it to change the keys in undertale from my oddly shaped arrow keys to WASD ;D

I dont understand why laptops have to have 2 arrow keys half the size of a normal key when it just makes it annoying to use.

You’re welcome.

The short (excuse the pun) answer is there isn’t enough space on laptop keyboards and its even worse on my 15.6 laptop as that has a numeric pad to cram in also (many don’t). In general all of the keys are smaller on laptops, certainly, I miss using my full size desktop keyboard.

At home you could always plug in a full size USB keyboard into your laptop.
However, that is not so practical when on the move.

Desk surface isn’t big enough (come to think of it my room isn’t big enough) for all the accumulated computer stuff already and I have a big desk
Desktop PC, monitor and UPS, Laptop, Netbook, Android tablet, not to mention Multifunction Printer and all of the stationary.

You forgot to mention the paper tape punch and reader