Teltonika configurator has malware!
as in 23/11/2025, the latest versions of all the configurators and the results were the following:
for FMB 1.8.10_B.4.00_R.7 ; infected
for FMB640 1.7.64_B.FM64_R.88 ; infected
for FMB641 1.7.64 B.FM64 R.83 ; infected
for FMC640 and FMM640 1.7.64_B.FM64_R.88 ; infected (same as FMB640)
for FMC650 1.8.3_B.FM64_R.153 ; infected
for FMM650 1.8.3_B.FM64_R.153 ; infected (same as FMC650)
for FMU1YX/FMC1YX/FMM1YX 1.8.10_B.4.00_R.7 ; infected (same as FMB)
for FMB140 1.8.10_B.4.00_R.7 ; infected (same as FMB)
for FMx150 1.8.21_B.4.01_R.10 ; infected
for FMC001 1.7.30_B.3.27_R.29 ; infected
for FMM001 1.7.30_B.3.27_R.29 ; infected (same as FMC001)
for FMC00A, FMM00A 1.8.15_B.4.01_R.9 ; infected
for FMB003, FMB002, FMB001 ; 1.8.15_B.4.01_R.9 ; infected (same as FMC00A...)
for FMP100, FMB020, FMB010 1.7.72_E.fmp100_eco_R.4 ; infected
for IP67 ; 1.8.10_B.4.00_R.7 ; infected (same as FMB)
for FMB965, FMB930 1.7.72_E.FMB9YX_R.24 ; infected
for FMC920, FMM920 1.8.10_B.4.00_R.7 ; infected (same as FMB)
for FMC003, FMM003 1.8.15_B.4.01_R.9 ; infected (same as FMC00A...)
for FMC800, FMM800, FMM80A, FMC880, FMM880 1.8.10_B.4.00_R.7 ; infected (same as FMB)
for FMC13A, FMM13A 1.7.72_B.3.29_R.11 ; infected
for GH5200 & TMT250 1.7.66_B.55.2_R.10 ; infected
for MSP500 1.4.9 C.002 ; NOT infected
for TAT1YX 1.7.74_B.TAT1_R.8 ; infected
for TFT100 1.7.66_B.55.2_R.11 ; infected
for TST100 1.6.11_R.39 ; NOT infected
Malware detected was 'Win.Infostealer.Snakelogger-10008663-2'
Good day,
This is false positive information. Regarding other antivirus software, there is no detection of any malware.
Good day,
Thank you for sharing the VirusTotal scan results. We understand your concern regarding the detection by one antivirus engine identifying our software as Win.Infostealer.Snakelogger-10008663-2.
We would like to clarify the situation:
- Antivirus programs sometimes mistakenly flag legitimate software as malicious. This is called a false positive, and it can occur due to heuristic analysis or signature similarities with known malware.
- In your VirusTotal scan, only one antivirus engine reported an issue, while all others confirmed the software is clean. This strongly suggests that the detection is a false positive.
- Please be assured that our software is developed using standard development tools and best practices, and it does not contain any malware, spyware, or harmful code.
- We have submitted a false positive report to the ClamAV vendor for review, and we have received their response that it is a false positive.
In the meantime, you can safely use our software. Please let us know if you need any additional information or documentation.
Best regards,
Teltonika Telematics Support Team
I was testing Teltonika configurators and passed them (.zip and extracted files) on clamav, and it reported malware (Win.Infostealer.Snakelogger-10008663-2). I then downloaded all latest versions of all configurators, and of 14, 11 were infected. You can check for yourself downloading any of them from their website (DO NOT EXECUTE ANYTHING!) and passing it through antivirus software. I may bring more details later.