We're gradually updating threat actor names in our reports to align with the new weather-themed taxonomy. Learn about Microsoft threat actor names
VirTool:WinNT/FURootkit.C
Detected by Microsoft Defender Antivirus
Aliases: No associated aliases
Summary
Virtool:Win32/FURootkit.C is a Windows kernel-mode rootkit program that targets computers running certain versions of Microsoft Windows. It can be used to hide processes, elevate process privileges, and hide device drivers. This rootkit is often bundled with other malicious software.
There are no manual recovery steps for Virtool:WinNT/FURootkit.C. Therefore, you should use up-to-date antivirus software to completely clean this rootkit from your computer. After doing so, do not reconnect your computer to the Internet until the computer is protected from re-infection. See the "Preventing Infection" section for more information.
Follow us
