Attention: We will be transitioning to a new AAD or Microsoft Entra ID from the week of May 20, 2024. In case your tenant requires admin consent, please refer to this document located at Overview of user and admin consent - Microsoft Entra ID | Microsoft Learn and grant access to App ID: 6ba09155-cb24-475b-b24f-b4e28fc74365 with graph permissions for Directory.Read.All and User.Read for continued access.
8 entries found.
Virus:Win32/Mabezat.gen
Virus:Win32/Mabezat.gen is the generic detection for the polymorphic virus family Mabezat.
Alert level:
severe
Virus:Win32/Mabezat.B
Windows Defender detects and removes this threat.
Virus:Win32/Mabezat.B is a polymorphic virus that infects Windows executable files. Apart from spreading through file infection, it also attempts to spread through e-mail attachments, network shares, removable drives and by CD-burning. It also contains a date-based payload that encrypts files with particular extensions.
Alert level:
severe
Virus:Win32/Mabezat.B!ofd
Virus:Win32/Mabezat.B!ofd is the detection for files infected and encrypted by Virus:Win32/Mabezat.B.
Alert level:
severe
Worm:Win32/Mabezat.B
Worm:Win32/Mabezat.B is a worm component of Virus:Win32/Mabezat.B, a file infecting virus. The component allows Win32/Mabezat to infect the computer when accessing an infected drive or file share from a computer that supports the autorun feature.
Alert level:
severe
Virus:Win32/Mabezat.A
Virus:Win32/Mabezat.A is a detection for files infected by Worm:Win32/Mabezat.A.
Alert level:
severe
Worm:Win32/Mabezat.A
Worm:Win32/Mabezat.A is a worm that attempts to spread by copying itself to newly attached media devices, such as USB drives or USB media cards, and even writable network drives. In some samples, Win32/Mabezat can also infect .EXE files by prepending its code to the host file.
Alert level:
severe
Virus:Win32/Mabezat.dam
Virus:Win32/Mabezat.dam is a detection for files that are corrupted or damaged during infection by either Virus:Win32/Mabezat.A or Virus:Win32/Mabezat.B. The damaged files cannot execute or further infect a computer.
Alert level:
severe