Warning message... Link to action
In MITRE's evaluation of EDR solutions, Windows Defender ATP demonstrated industry-leading optics and detection capabilities Read the blog: Insights from the MITRE evaluation
Aliases: Backdoor/Win32.Etso (AhnLab) winpe/Agent.ALQHI (Norman) Trojan horse Agent3.BHML (AVG) BDS/Rogue.724628.2 (Avira) Trojan.DownLoader4.54317 (Dr.Web) Win32/Agent.SUQ trojan (ESET) W32/Agent.SUQ (Fortinet) Backdoor.Win32.Winnti (Ikarus) Troj/Winnti-A (Sophos) BKDR_WINNTI.SM2 (Trend Micro)
Windows Defender Antivirus detects and removes this threat.
Winnti is a family of multi-component malware that give attackers persistent access and control over infected computers through a backdoor. It has known associations with activity groups involved in cyberespionage.