Highly surprised any previous version didn't flag AV.
The safest path is to review the code and use the cross compile instruction in the first/second post.
The version I dropped into the 7z (a62385f) has this signature.
# sha1sum cgminer.exe
a4c65616886dff429dd01b4caac582cea32ab43b cgminer.exe
C:\AVExcludedPath\cgminer-4.11.1-windows-gekko>certutil -hashfile cgminer.exe
SHA1 hash of cgminer.exe:
a4c65616886dff429dd01b4caac582cea32ab43b