NEW BLOG POST: Windows Defender AV’s behavior monitoring coupled with cloud-powered machine learning models uncovered and blocked a massive Dofoil (Smoke Loader) coin mining campaign. Read the post
Alert level: Severe Detected with Windows Defender Antivirus
Also detected as: W32/Backdoor.FSZO-5117 (Command) Gen:Trojan.Heur.JP.juW@ayZZvMb (BitDefender) Trojan.Inject1.6386 (Dr.Web) Win32/Korplug.A trojan (ESET) Trojan.Win32.Korplug (Ikarus) Backdoor/Win32.Plugx (AhnLab) Backdoor.Win32.Agent.dhwf (Kaspersky) W32/Korplug.CH!tr (Fortinet)
Windows Defender detects and removes this family of threats.
These threats connect to a remote server to receive instructions from a malicious hacker. This can include downloading files onto your PC.
They can be installed when you visit a malicious or hacked website.