We’re looking for a method to download a remote file without it causing the file to be marked as a false positive. We currently use Urlmon/URLDownloadToFile however, that causes the file to be marked as a false positive which makes our software look bad and may make customers to decide against using our software and take in favour of our competitors. In case anybody is interested, we intend to use it to download updates for our software.
We would prefer to not use external libraries like libcurl, we’re using Visual Studio 2012/C++.
Run the binary against multiple engine malware/antivirus scanning websites to see if you get any red flags, then contact the malware/antivirus provider to correct false positives. You can then periodically rescan to see if you are still getting positives with updated definitions.