Warning message... Link to action
In MITRE's evaluation of EDR solutions, Windows Defender ATP demonstrated industry-leading optics and detection capabilities Read the blog: Insights from the MITRE evaluation
Aliases: No associated aliases
Windows Defender Antivirus detects and removes this threat.
This trojan attempts to steal personal information, including banking credentials. It is usually distributed through Office documents or PDFs attached on spam email.
Social engineering on the emails and attachments used to distribute this trojan are designed to entice recipients into clicking links or enabling macros, resulting in the download and installation of the trojan executable containing the credential theft payload.
This trojan has also been observed downloading and installing other malware.
To avoid this threat, always check whether an email is spoofed or fake before opening attachments or clicking links. Spoofed emails can be spotted through typos and suspicious sender addresses.
Learn how artificial intelligence in Windows Defender AV protects you from this threat before it even reaches your computer: How artificial intelligence stopped an Emotet outbreak
For information on defending enterprise environments from this threat, read: Mitigating and eliminating info-stealing Qakbot and Emotet in corporate networks