OneDrive recognizes the crypted files as RansomWare with new Vault7

I am still wondering what rules OneDrive uses to make this classification. I use OneDrive4Business very excessively and for years now with Cryptomator, and never had this message.