Warning message... Link to action
Informational message... Link to action
Aliases: W32/Trojan.ENPO-5670 (Command) Trojan-Ransom.Win32.Foreign.kurp (Kaspersky) winpe/Kryptik.CDSJ (Norman) TR/Agent.BDBT.1 (Avira) Trojan.DownLoader11.10009 (Dr.Web) Win32/TrojanDownloader.Agent.AOJ (ESET) W32/Agent.AOJ!tr (Fortinet) Troj/Ransom-AHN (Sophos) W32.Cridex.B (Symantec) TROJ_DLOADR.BDL (Trend Micro)
Windows Defender Antivirus detects and removes this threat.
This threat can steal your personal information, including your banking user names and passwords.
It is usually installed when you open a spam email attachment or click on a malicious link in a PDF.
Learn how artificial intelligence in Windows Defender AV protects you from this threat before it even reaches your computer: How artificial intelligence stopped an Emotet outbreak
For information on defending enterprise environments from this threat, read: Mitigating and eliminating info-stealing Qakbot and Emotet in corporate networks