Attention: We will be transitioning to a new AAD or Microsoft Entra ID from the week of May 20, 2024. In case your tenant requires admin consent, please refer to this document located at Overview of user and admin consent - Microsoft Entra ID | Microsoft Learn and grant access to App ID: 6ba09155-cb24-475b-b24f-b4e28fc74365 with graph permissions for Directory.Read.All and User.Read for continued access.
5 entries found.
Trojan:Win32/Coremhead!rts
Trojan:Win32/Coremhead!rts is a generic detection name for trojans that display a number of common malware behaviors.
Alert level:
high
Trojan:Win32/Coremhead!gmb
Windows Defender detects and removes this threat.
This threat is a trojan which tries to do one or all of the following:
- Download and install other malware
- Use your computer for click fraud
- Record your keystrokes and the sites you visit
- Send information about your PC, including user names and browsing history, to a remote malicious hacker
- Give a remote malicious hacker access to your PC
Due to the generic nature of this detection, we can only provide general information about it.
Alert level:
severe
Trojan:Win32/Hocomrac.A
Trojan:Win32/Hocomrac.A is a malicious program that is unable to spread of its own accord. It may perform a number of actions of an attacker's choice on an affected computer.
Alert level:
severe
HackTool:Win32/Wpakill
Windows Defender detects and removes this threat.
This family of hacktools are used to patch or "crack" some software so it will run without a valid license or genuine product key.
Don't run this hacktool as it can be associated with malware or unwanted software.
In the past, we have seen malware on many PCs where hacktools are detected. You can read more in Volume 13 of the Security Intelligence Report.
Alert level:
high