Attention: We have transitioned to a new AAD or Microsoft Entra ID from the week of May 20, 2024. In case your tenant requires admin consent, please refer to this document located at Overview of user and admin consent - Microsoft Entra ID | Microsoft Learn and grant access to App ID: 6ba09155-cb24-475b-b24f-b4e28fc74365 with graph permissions for Directory.Read.All and User.Read for continued access. While the app may appear unverified, you can confirm its legitimacy by verifying the App ID provided.
5 entries found.
TrojanSpy:Win32/Malintent
TrojanSpy:Win32/Malintent is a name given to malware detected by our automated system. This type of malware contacts any of a number of public web servers that then reply with the IPaddress of the computer that contacted them.
Often malware with this detection name is spying malware that is interested in your IP address as an additional piece of information that it may then use for any number of malicious purposes.
Analysis by Chris Stubbs
Alert level:
severe
TrojanSpy:Win32/Malintent!pz
Alert level:
severe
TrojanSpy:Win32/Malintent!rts
Alert level:
severe
TrojanSpy:Win32/Malintent!gmb
Windows Defender detects and removes this threat.
This threat is a trojan which tries to do one or all of the following:
- Download and install other malware
- Use your computer for click fraud
- Record your keystrokes and the sites you visit
- Send information about your PC, including user names and browsing history, to a remote malicious hacker
- Give a remote malicious hacker access to your PC
Due to the generic nature of this detection, we can only provide general information about it.
Alert level:
severe
TrojanSpy:Win32/Malintent!rfn
Alert level:
severe