Apparently it was in the top ten from one source dating back to september:
I grabbed the same nsis-common_3.04-1_all.deb from the Debian site http://ftp.debian.org/debian/pool/main/n/nsis/ and the signature matches the one on Virustotal so there is either an issue with the Debian repository or false positive.
Can you rip it out of their iso and see what the scan results are? Then I will be completely wrong and know that my environment is not sanitized.
Well I guess you answered my question. Sorry I have been up all night re-imaging again.
I reached out to the Debian security team and they said it is a false positive and I found this post as well
Thanks Tom! That was bit confusing as multiple sources were flagging it and the mail system would not let me send the lib file to Untangle for their own analysis.
Kind of odd that I have like 10-12 Debian based distro files and none of them popped on a scan?
Kali pops of course, but not MX, Mint, Ubuntu, Debian…
Oh well, Im done…thread done.