Warning message... Link to action
Read our in-depth analysis of a new high-volume campaign that marked the resurgence of notorious malware-as-a-service Hawkeye Keylogger. Read the blog post
Aliases: VirTool:Win32/Injector.gen!BB (other) Trojan-Dropper.Win32.Dapato.bipz (Kaspersky) Mal/EncPk-AFA (Sophos) Mal/Kuluoz-C (Sophos)
Windows Defender Antivirus detects and removes this threat.
This trojan tries to connect your PC to a remote server to receive instructions from a malicious hacker. The hacker can then tell the trojan to perform any number of actions, including to download and run files. We have seen this trojan download variants of the rogue security scanner Rogue:Win32/Winwebsec.
There is more information in the Win32/Kuluoz family description.