Hey there, let's tackle your problem step by step—first, let's clear up why you might have run into that issue, then walk through how to get a clean Kali setup safely.

First off, it's extremely unlikely that the official Kali Linux ISO came with malware. What probably happened is one of these scenarios:

• The ISO file got corrupted or tampered with during download (maybe via a compromised network or a fake mirror site)
• Your Windows system already had an infection that targeted the downloaded ISO file
• Windows Defender flagged some of Kali's built-in security tools as a false positive (since Kali includes penetration testing tools, some antivirus tools get overzealous)

Now, here's how to safely get a clean Kali ISO and ensure a secure installation:

1. Securely Download the Kali ISO #

• Stick to official sources only: Always grab the ISO directly from the official Kali platform (skip random third-party mirrors unless they're explicitly listed as trusted by Kali). Double-check the domain name to avoid phishing sites.
• Verify the ISO's integrity with a hash check: This is the most reliable way to confirm your ISO hasn't been tampered with.
  • On Windows, open PowerShell, navigate to the folder where you saved the ISO, and run:
    Get-FileHash -Path ".\kali-linux-202X.X-amd64.iso" -Algorithm SHA256
  • Compare the output hash with the SHA256 value listed on the official Kali download page. If they match exactly, your ISO is clean.
• Optional: GPG signature verification: For extra security, you can verify the ISO's GPG signature. This requires installing GPG tools on Windows, but the hash check is usually sufficient for most users.

2. Ensure a Clean & Safe Installation #

• Clean up your system first: Delete the old infected ISO and any existing Kali VM files from your drive. Run a full Windows Defender scan to eliminate any existing malware on your laptop. If the drive was nearly full, clear out unnecessary files to free up space before proceeding.
• Configure your VM securely:
  • When creating a new VM, avoid enabling host-guest file sharing or mounting your Windows drive directly until you've confirmed the Kali system is clean. This prevents cross-contamination.
  • Choose the "minimal installation" option during setup—this installs only essential components, reducing the attack surface.
• Post-installation security steps:
  • Immediately after installing Kali, run sudo apt update && sudo apt full-upgrade to patch all known vulnerabilities.
  • Install and run tools like rkhunter (a rootkit scanner) to check for suspicious activity:
    sudo apt install rkhunter
sudo rkhunter --check
  • If Windows Defender keeps flagging the Kali VM files, add the VM's folder to Defender's exclusion list (only do this after you've verified the ISO is clean!).

备注：内容来源于stack exchange，提问作者NisNis