We're gradually updating threat actor names in our reports to align with the new weather-themed taxonomy. Learn about Microsoft threat actor names
Virus:Win32/Cutwail.A
Detected by Microsoft Defender Antivirus
Aliases: Trojan.Pandex!inf (Symantec)
Summary
Virus:Win32/Cutwail.A is a virus that patches the file WINLOGON.EXE - a system file for Windows that manages Windows logon. This modification is used to load the file wsys.dll.
Restoring Winlogon.exe
Virus:Win32/Cutwail.A may affect winlogon.exe beyond reasonable repair. Should your antivirus solution report a Virus:Win32/Cutwail.A infection, we recommend using the System File Checker (sfc) to scan your system files and restore winlogon.exe if necessary. For information on using the System File Checker on Windows XP, please see the following URL: http://www.microsoft.com/resources/documentation/windows/xp/all/proddocs/en-us/system_file_checker.mspx?mfr=true
Follow us
