Crossmap.ai was built to turn spatial data into smart decisions—not to trigger malware alerts. On May 22, 2025, one antivirus engine out of 59 scanned by VirusTotal raised a red flag:
58 independent engines confirmed Crossmap.ai is clean.
The single positive came from an ML model prone to flag UPX or Electron binaries.
Result: 1 of 59 engines
Detection type: Genetic Heuristic ML
Public report: Link
This does not mean Crossmap.ai is unsafe.
Table of contents
Open Table of contents
Kaspersky confirms: 100 percent clean
SHA256: B830B1C5ABA74E38A096BC07A44697 58F04BE4EDBC1099D0173BFB9E237E1D5D
Kaspersky Result: No threats detected the file is clean.
Kaspersky is renowned for its precision and low false-positive rate, often cited as a benchmark in independent evaluations (AV-Test, AV-Comparatives). Its clean report reinforces that Crossmap.ai is 100% safe.
Crossmap.ai result
| Item | Detail |
|---|---|
| SHA256 Hash | b830b1c5aba74e38a096bc07a44697 58f04be4edbc1099d0173bfb9e237e1d5d |
| Scan date | 2025-05-22 |
| Positive engines | 1 using heuristic or ML |
| Negative engines | 58 |
What is VirusTotal
VirusTotal is a tool that aggregates results from many antivirus engines to provide fast threat assessments:
| Feature | Detail |
|---|---|
| Active engines | 59 as of May 2025 |
| Max file size | 650 MB |
| Nature of scan | Automatic, no human review |
| Extra value | Public data for research |
Important: VirusTotal does not validate or weigh results. A single detection is just one independent engine’s view.
Why false positives happen
| Cause | Explanation | Relevance to Crossmap.ai |
|---|---|---|
| Broad heuristics | Triggers on compressed sections | We use UPX for binary compression |
| Unknown packers | New stubs not in engine database | Our builds are size optimized |
| Modern frameworks | Structures in Rust or Electron | Our app uses Electron UI |
| Outdated definitions | Engine lacks updated signatures | Seen in only one engine |
False positives occur in 0.1% 0.3% of scans per engine. One of 59 is statistically normal.
Our security measures
- EV code signing with DigiCert
- Public SHA256 hashes on our download page
- CI/CD with automated static analysis and dependency scanning
- Scanning by CrowdStrike, Microsoft Defender ATP, and internal tools
We have contacted the vendor responsible for the false positive to initiate a whitelisting request.
Conclusion and next steps
- Crossmap.ai is verified as safe by 58 of 59 engines
- Kaspersky confirms zero threats
- The one detection is a heuristic false positive
- We will continue to publish hashes and submit builds for transparency
You can verify the hash yourself using:
Get-FileHash .\Crossmap-Setup.exe -Algorithm SHA256
# Expected: B830B1C5ABA74E38A096BC07A4469758F04BE4EDBC1099D0173BFB9E237E1D5D