Published Jul 23, 2014|Updated Feb 20, 2018


Severe |Detected with Windows Defender Antivirus

Aliases: W32/Trojan.ENPO-5670 (Command) Trojan-Ransom.Win32.Foreign.kurp (Kaspersky) winpe/Kryptik.CDSJ (Norman) TR/Agent.BDBT.1 (Avira) Trojan.DownLoader11.10009 (Dr.Web) Win32/TrojanDownloader.Agent.AOJ (ESET) W32/Agent.AOJ!tr (Fortinet) Troj/Ransom-AHN (Sophos) W32.Cridex.B (Symantec) TROJ_DLOADR.BDL (Trend Micro)


Windows Defender Antivirus detects and removes this threat.

This threat can steal your personal information, including your banking user names and passwords. 

It is usually installed when you open a spam email attachment or click on a malicious link in a PDF.   

Learn how artificial intelligence in Windows Defender AV protects you from this threat before it even reaches your computer: How artificial intelligence stopped an Emotet outbreak

For information on defending enterprise environments from this threat, read: Mitigating and eliminating info-stealing Qakbot and Emotet in corporate networks


Latest news