VirTool:Win32/RemoteExec

Guidance for individual users

Keep your operating system and antivirus products up to date.

To learn more about preventing trojans or other malware from affecting individual devices, read about preventing malware infection. For more tips on how to keep your device safe, go to the Microsoft security help & learning portal.

Guidance for enterprise administrators

Following the mitigation steps below can help prevent malware attacks:

• Turn on cloud-delivered protection and automatic sample submission on Microsoft Defender Antivirus. These capabilities use artificial intelligence and machine learning to quickly identify and stop new and unknown variants.
• Turn on Conditional Access policies to protect users from attacks that take advantage of stolen credentials by enabling policies such as device compliance or trusted IP address requirements.
• Use the Microsoft Defender Firewall and your network firewall to prevent RPC and SMB communication among endpoints whenever possible. This limits lateral movement as well as other attack activities.
• Turn on tamper protection features to prevent attackers from stopping security services.