We're gradually updating threat actor names in our reports to align with the new weather-themed taxonomy. Learn about Microsoft threat actor names
Trojan:Win32/GreenMonster.gen!dha
Detected by Microsoft Defender Antivirus
Aliases: No associated aliases
Summary
Trojan:Win32/GreenMonster is a detection for Korplug loader found in infected USB drives.
When a clean USB drive is plugged into a Korplug infected device, Trojan:Win32/GreenMonster will be copied into the USB drive.
- Remove the infected device from the network.
- Investigate for other compromised devices in the network.
- Check the USB drive for hidden folders containing malicious executables.