Attention: We have transitioned to a new AAD or Microsoft Entra ID from the week of May 20, 2024. In case your tenant requires admin consent, please refer to this document located at Overview of user and admin consent - Microsoft Entra ID | Microsoft Learn and grant access to App ID: 6ba09155-cb24-475b-b24f-b4e28fc74365 with graph permissions for Directory.Read.All and User.Read for continued access. While the app may appear unverified, you can confirm its legitimacy by verifying the App ID provided.
We're gradually updating threat actor names in our reports to align with the new weather-themed taxonomy. Learn about Microsoft threat actor names
Win32/Stuxnet
Detected by Microsoft Defender Antivirus
Aliases: Stuxnet (other)
Summary
Windows Defender Antivirus detects and removes this threat.
This family of threats can install other malware, inject code in processes, and give a hacker backdoor access and control of your PC.
The family can spread via removable drives, such as USB flash drives.
Win32/Stuxnet exploits a vulnerability that is discussed in Microsoft Security Bulletin MS10-046.
The following Microsoft software detects and removes this threat:
- Microsoft Security Essentials or, for Windows 8, Windows Defender
- Microsoft Safety Scanner
- Microsoft Windows Malicious Software Removal Tool
Even if we've already detected and removed this particular threat, running a full scan might find other malware that is hiding on your PC.
Additional recovery instructions
This threat exploits a vulnerability discussed in Microsoft Security Bulletin MS10-046. Make sure that you install the updates available from Microsoft so that your software is no longer affected.