Warning message... Link to action
Read our in-depth analysis of a new high-volume campaign that marked the resurgence of notorious malware-as-a-service Hawkeye Keylogger. Read the blog post
Aliases: W32/Trojan.ENPO-5670 (Command) Trojan-Ransom.Win32.Foreign.kurp (Kaspersky) winpe/Kryptik.CDSJ (Norman) TR/Agent.BDBT.1 (Avira) Trojan.DownLoader11.10009 (Dr.Web) Win32/TrojanDownloader.Agent.AOJ (ESET) W32/Agent.AOJ!tr (Fortinet) Troj/Ransom-AHN (Sophos) W32.Cridex.B (Symantec) TROJ_DLOADR.BDL (Trend Micro)
Windows Defender Antivirus detects and removes this threat.
This threat can steal your personal information, including your banking user names and passwords.
It is usually installed when you open a spam email attachment or click on a malicious link in a PDF.
Learn how artificial intelligence in Windows Defender AV protects you from this threat before it even reaches your computer: How artificial intelligence stopped an Emotet outbreak
For information on defending enterprise environments from this threat, read: Mitigating and eliminating info-stealing Qakbot and Emotet in corporate networks